← Back to catalog
SI-2(6)
Removal of Previous Versions of Software and Firmware
System and Information Integrity (SI)
Baselines
Low · Not includedModerate · Not includedHigh · Not included
Description
Remove previous versions of [assignment] after updated versions have been installed.
Discussion
Previous versions of software or firmware components that are not removed from the system after updates have been installed may be exploited by adversaries. Some products may automatically remove previous versions of software and firmware from the system.
Implementation guidance
No content available.
CSF 2.0 crosswalk
No CSF mappings exist for this control.