CCE-94479-3| Platform: rhel8 | Date: (C)2019-11-07 (M)2022-10-10 |
Verify /boot/grub2/grub.cfg User Ownership
The file '/boot/grub2/grub.cfg' should
be owned by the 'root' user to prevent destruction
or modification of the file.
To properly set the owner of '/boot/grub2/grub.cfg', run the command:
Parameter:
Technical Mechanism:
Only root should be able to modify important boot parameters.
Fix:
chown root /boot/grub2/grub.cfg
| CCSS Severity: | CCSS Metrics: |
| CCSS Score : | Attack Vector: |
| Exploit Score: | Attack Complexity: |
| Impact Score: | Privileges Required: |
| Severity: | User Interaction: |
| Vector: | Scope: |
| | Confidentiality: |
| | Integrity: |
| | Availability: |
| | |
References: | Resource Id | Reference |
|---|
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:55867 |
