CCE-95697-9| Platform: cpe:/o:debian:debian_linux:11.x, cpe:/o:ubuntu:ubuntu_linux:18.04, cpe:/o:ubuntu:ubuntu_linux:20.04, cpe:/o:ubuntu:ubuntu_linux:22.04, cpe:/o:ubuntu:ubuntu_linux:23.04 | Date: (C)2021-03-08 (M)2023-09-01 |
The cron daemon is used to execute batch jobs on the system.
Rationale:
While there may not be user jobs that need to be run on the system, the system does have maintenance jobs that may include security monitoring that have to run, and cron is used to execute them.
Fix:
Run the following command to enable cron # systemctl --now enable cron
Parameter:
[yes/no]
Technical Mechanism:
Run the following command to enable cron # systemctl --now enable cron
| CCSS Severity: | CCSS Metrics: |
| CCSS Score : 9.3 | Attack Vector: NETWORK |
| Exploit Score: 3.9 | Attack Complexity: LOW |
| Impact Score: 4.7 | Privileges Required: NONE |
| Severity: CRITICAL | User Interaction: NONE |
| Vector: AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N | Scope: CHANGED |
| | Confidentiality: HIGH |
| | Integrity: LOW |
| | Availability: NONE |
| | |
References: | Resource Id | Reference |
|---|
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:85274 |
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:87404 |
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:92286 |
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:70817 |
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:68737 |
