A “hot key” feature is enabled other than the menu feature that allows the user to select the IS to be used from the displayed menu.

From Keyboard, Video, Mouse Switch Security STIG

Part of KVM Miscellaneous hot key features

Associated with IA controls: DCBP-1

SV-6845r1_rule A “hot key” feature is enabled other than the menu feature that allows the user to select the IS to be used from the displayed menu.

Vulnerability discussion

There are many "hot key" features that could be used. Since each vender has a different set of features and it is impractical to review all features for all vender for potential vulnerabilities, no features other than the ability to bring up a menu of the ISs available on the KVM switch to allow the user to select which IS they wish to display. Additional features will be approved if requested and time is available to review the feature and it implementation.The IAO or SA will ensure that the only “hot key” feature enabled is the menu feature that allows the user to select the IS to be used from the displayed menu.

Check content

The reviewer will, with the assistance of the IAO or SA, verify that the only “hot key” feature enabled is the menu feature that allows the user to select the IS to be used from the displayed menu. If the configuration cannot be protected this will be considered a finding.

Fix text

Disable any unauthorized "hot key" features in the KVM switch's configuration.

Pro Tips

Lavender hyperlinks in small type off to the right (of CSS class id, if you view the page source) point to globally unique URIs for each document and item. Copy the link location and paste anywhere you need to talk unambiguously about these things.

You can obtain data about documents and items in other formats. Simply provide an HTTP header Accept: text/turtle or Accept: application/rdf+xml.

Powered by sagemincer