Xylok Security Suite must be running a supported version.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-269577	XYLK-20-000051	SV-269577r1053506_rule		High

Description

It is critical to the security and stability of Xylok to ensure that updates and patches are deployed through a trusted software supply chain. Key elements to having a trusted supply chain include ensuring that versions deployed come from known, trusted sources. Additionally, it is important to check for and apply security-relevant updates in a timely manner. To help users manage updates, Xylok manages versions via their internal portal. Satisfies: SRG-APP-000131, SRG-APP-000456

STIG	Date
Xylok Security Suite 20.x Security Technical Implementation Guide	2024-12-13

Details

Check Text (C-73610r1053504_chk)

Verify the latest install is being used.

Log on to the GUI and locate the version from the lower left corner.

Compare this version with the latest release on the Xylok portal (https://downloads.xylok.io).

If the current version is not the latest version from the Xylok portal, this is a finding.

Fix Text (F-73511r1053505_fix)

Update Xylok Security Suite to the latest version.

Follow the instructions found here: https://app.xylok.io/docs/01-server-admin/installation/updating/.