MongoDB must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| medium | V-279382 | SRG-APP-000383-DB-000364 | MD8X-00-007600 | SV-279382r1179313_rule | 2026-02-20 | 1 |
Description
Use of nonsecure network functions, ports, protocols, and services exposes the system to avoidable threats.
ℹ️ Check
Review the network functions, ports, protocols, and services supported by the database management system (DBMS).
If any protocol is prohibited by the PPSM guidance and is enabled, this is a finding.
✔️ Fix
Disable each prohibited network function, port, protocol, or service prohibited by the PPSM guidance.
More information for MongoDB port management can be found at the following link:
https://www.mongodb.com/docs/manual/reference/default-mongodb-port/