Requirement | Count | Level | Type | Description | Location | Test |
---|---|---|---|---|---|---|
A21 | 1 (of 1) |
INFO | SCHEMATRON | oval:gov.nist.validation.r2930-win:tst:478100 - The OVAL test type is not checked in the NIST SCAP Validation Program. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:tests[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:group_test[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5#windows'][1] | exists(document(concat('','/validation_program_oval_test_types.xml'))/test_types/test_type[@namespace eq namespace-uri(current()) and @name eq local-name(current())]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48018r1_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48024r1_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][2]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48034r1_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][3]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48042r1_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][4]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48052r1_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][5]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48053r1_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][6]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48055r1_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][7]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48057r1_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][8]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48062r1_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][9]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48063r1_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][10]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48064r1_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][11]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48070r1_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][12]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48073r1_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][13]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48075r1_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][14]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48076r1_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][15]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48077r1_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][16]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48079r1_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][17]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48080r1_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][18]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48081r1_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][19]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48083r1_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][20]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48086r1_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][21]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48160r2_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][22]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48167r2_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][23]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48168r1_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][24]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48197r2_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][25]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48198r2_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][26]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48199r2_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][27]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48201r2_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][28]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48251r2_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][29]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48259r2_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][30]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
74-1 | 1 (of 31) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_r2930_SV-48508r2_rule - All CCE references SHOULD be in the official CCE dictionary. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][31]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | every $m in xccdf:ident[matches(@system, '^(http://cce.mitre.org)$')] satisfies exists(document('/nvdcce-0.1-feed.xml')/nvd-config:nvd/nvd-config:entry[@id eq $m]) |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4776 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][194] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4777 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][195] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4370 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][197] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4371 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][198] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4373 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][200] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4374 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][201] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4376 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][203] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4377 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][204] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4779 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][206] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4780 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][207] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4129 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][247] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4139 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][248] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4048 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][250] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4049 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][251] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4050 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][252] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4051 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][253] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4052 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][254] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4053 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][255] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4396 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][256] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4781 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][259] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4783 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][260] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4108 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][268] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4100 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][272] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4102 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][274] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4116 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][275] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4117 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][276] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4126 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][285] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4122 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][289] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4118 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][290] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4119 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][291] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
207-1 | 1 (of 31) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930-win:def:4120 - OVAL definitions of class 'compliance' should include a reference to a CCE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][2]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][292] | if(@class eq 'compliance') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cce.mitre.org|CCE)$')]) else true() |
209-1 | 1 (of 2) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930.patch:def:4 - OVAL definitions of class 'inventory' should include a reference to a CPE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][5]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][4] | if(@class eq 'inventory') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cpe.mitre.org|CPE)$') and (matches(@ref_id,'^[c][pP][eE]:/[AHOaho]?(:[A-Za-z0-9\._\-~%]*)0 6$') or matches(@ref_id,'^cpe:2\.3:[aho\*-](:(((\?*|\*?)([a-zA-Z0-9\-\._]|(\\[\\\*\?!"#$$%&\(\)\+,/:;<=>@\[\]\^`\{\|}~]))+(\?*|\*?))|[\*-]))5(:(([a-zA-Z]2 3(-([a-zA-Z]2|[0-9]3))?)|[\*-]))(:(((\?*|\*?)([a-zA-Z0-9\-\._]|(\\[\\\*\?!"#$$%&\(\)\+,/:;<=>@\[\]\^`\{\|}~]))+(\?*|\*?))|[\*-]))4$'))]) else true() |
209-1 | 1 (of 2) |
WARN | SCHEMATRON | oval:gov.nist.validation.r2930.patch:def:5 - OVAL definitions of class 'inventory' should include a reference to a CPE, where applicable. | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][5]/*:oval_definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definitions[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][1]/*:definition[namespace-uri()='http://oval.mitre.org/XMLSchema/oval-definitions-5'][5] | if(@class eq 'inventory') then exists(oval-def:metadata/oval-def:reference[matches(@source,'^(http://cpe.mitre.org|CPE)$') and (matches(@ref_id,'^[c][pP][eE]:/[AHOaho]?(:[A-Za-z0-9\._\-~%]*)0 6$') or matches(@ref_id,'^cpe:2\.3:[aho\*-](:(((\?*|\*?)([a-zA-Z0-9\-\._]|(\\[\\\*\?!"#$$%&\(\)\+,/:;<=>@\[\]\^`\{\|}~]))+(\?*|\*?))|[\*-]))5(:(([a-zA-Z]2 3(-([a-zA-Z]2|[0-9]3))?)|[\*-]))(:(((\?*|\*?)([a-zA-Z0-9\-\._]|(\\[\\\*\?!"#$$%&\(\)\+,/:;<=>@\[\]\^`\{\|}~]))+(\?*|\*?))|[\*-]))4$'))]) else true() |
251-1 | 1 (of 1) |
WARN | SCHEMATRON | xccdf_gov.nist_rule_security_patches_up_to_date - An xccdf:Rule should include an xccdf:ident containing a CVE, CCE, or CPE | /*:data-stream-collection[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:component[namespace-uri()='http://scap.nist.gov/schema/scap/source/1.2'][1]/*:Benchmark[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1]/*:Group[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][32]/*:Rule[namespace-uri()='http://checklists.nist.gov/xccdf/1.2'][1] | exists(xccdf:ident[matches(@system,'^(http://cce.mitre.org|http://cve.mitre.org|http://cpe.mitre.org)$')]) |
Requirement | Count | Level | Type | Description | Location | Test |
---|---|---|---|---|---|---|
330-3 | 1 (of 1) |
WARN | SCHEMATRON | Warning: The 'cpe:/' prefix (CPE URI binding) is allowed within an @idref attribute, but the CPE Formatted String binding is preferred. See the XCCDF 1.2.1 specification, Section 6.2.5. | /*[local-name()='Benchmark']/*[local-name()='platform'] | false() |
Statistic Type | Statistic ID | Test Name | Value |
---|---|---|---|
COUNT | RULE_COUNT | 32 | |
COUNT | RULE_OVAL_COUNT | 32 | |
COUNT | RULE_OCIL_COUNT | ||
COUNT | RULE_OCIL_ONLY_COUNT | ||
COUNT | RULE_CCE_COUNT | 31 | |
COUNT | RULE_TEST_COUNT | registry_test | 265 |
COUNT | RULE_TEST_COUNT | passwordpolicy_test | 1 |
COUNT | RULE_TEST_COUNT | lockoutpolicy_test | 6 |
COUNT | RULE_TEST_COUNT | user_test | 7 |
COUNT | RULE_TEST_COUNT | sid_test | 1 |
COUNT | RULE_TEST_COUNT | accesstoken_test | 38 |
COUNT | RULE_TEST_COUNT | auditeventpolicysubcategories_test | 45 |
COUNT | RULE_TEST_COUNT | group_test | 1 |
COUNT | RULE_TEST_COUNT | file_test | 1 |
COUNT | RULE_TEST_COUNT | family_test | 1 |
COUNT | RULE_TEST_COUNT | variable_test | 3 |