Our security team has flagged out DevTest 10.6 VM with the following vulnerability. Please assist to remediate.
Release : 10.6
Component : CA Service Virtualization
The 'Windows Service Weak Permissions detected’ vulnerability isn't a product related vulnerability, but rather how the Service account, or User accounts have been set up in Windows. You need to work with your Windows System Admin, IT department, or Security team to resolve the issue.
Check your user privileges, and properly configure the services permissions and the folders where the service exists. Normal user should not be able to start or stop any of the DefTest services, and Administrators should only have access to the folder where the binaries, for the various services are stored.
For more information regarding this exact vulnerability, see:
https://medium.com/@asfiyashaikh10/windows-privesc-weak-service-permission-b90f3bf4d44f
As a reminder, the recommended order of starting the DevTest services is:
1. Identity Access Manager
2. Enterprise Dashboard
3. Registry
4. VSE
5. Portal
6. Coordinatior/Simultor/Broker (if any are needed)
Note: Shutdown order is just opposite of startup.