CCE-90745-1Platform: rhel7 | Date: (C)2017-06-29 (M)2022-10-10 |
Assign Password to Prevent Changes to Boot Firmware Configuration
Assign a password to the system boot firmware (historically called BIOS on PC
systems) to require a password for any configuration changes.
Parameter:
Technical Mechanism:
Assigning a password to the system boot firmware prevents anyone
with physical access from configuring the system to boot
from local media and circumvent the operating system's access controls.
For systems in physically secure locations, such as
a data center or Sensitive Compartmented Information Facility (SCIF), this risk must be weighed
against the risk of administrative personnel being unable to conduct recovery operations in
a timely fashion.
Fix:
No Remediation Info
CCSS Severity: | CCSS Metrics: |
CCSS Score : | Attack Vector: |
Exploit Score: | Attack Complexity: |
Impact Score: | Privileges Required: |
Severity: | User Interaction: |
Vector: | Scope: |
| Confidentiality: |
| Integrity: |
| Availability: |
| |
References: