OpenSCAP and vulnerability scan report:

  • Prisma Cloud Compute release: 21.08 (21.08.514)

  • Base image: registry.access.redhat.com/ubi8/ubi-minimal:8.4-205

  • Benchmark URL: scap-security-guide-0.1.54/ssg-rhel8-ds.xml

  • Benchmark ID: xccdf_org.ssgproject.content_benchmark_RHEL-8

  • Profile ID: xccdf_org.ssgproject.content_profile_stig

  • Compared to IronBank’s UBI8-minimal, Version 8.4, Build Date: 2021-08-26T13:59:07.000Z

twistlock/private:console_21_08_514

Findings for Prisma Cloud Compute Console.

OpenSCAP report

Rule_ID Compute finding IronBank finding Justification

xccdf_org.ssgproject.content_rule_configure_openssl_crypto_policy

Pass

Fail

/etc/pki/tls/openssl.cnf configured according to check

xccdf_org.ssgproject.content_rule_banner_etc_issue

Fail

Pass

Application is a non-interactive container. There is no interactive console session with the container.

Vulnerabilities full report

No patches for existing vulnerabilities available at time of release.

twistlock/private:defender_21_08_514

Findings for Prisma Cloud Compute Defender.

OpenSCAP report

Rule_ID Compute finding IronBank finding Justification

xccdf_org.ssgproject.content_rule_configure_openssl_crypto_policy

Pass

Fail

/etc/pki/tls/openssl.cnf configured according to check

xccdf_org.ssgproject.content_rule_banner_etc_issue

Fail

Pass

Application is a non-interactive container. There is no interactive console session with the container.

Vulnerabilities full report

No patches for existing vulnerabilities available at time of release.