| name |
Rapid7™ Nexpose™ Vulnerability Management and Penetration Testing System V5.1 |
VMware Horizon 6 version 6.2.2 and Horizon Client 3.5.2 |
| category |
Other Devices and Systems |
Other Devices and Systems |
| scheme |
CA |
CA |
| status |
archived |
archived |
| not_valid_after |
15.05.2017 |
12.08.2021 |
| not_valid_before |
22.05.2012 |
12.08.2016 |
| cert_link |
|
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/383-4-356%20CT%20v1.1e.docx |
| report_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/383-4-148_CR_english_v1%200.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/383-4-356%20CR%20v1.0e.pdf |
| st_link |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/Rapid7_CommonCriteria_STv1.7.pdf |
https://www.commoncriteriaportal.org/nfs/ccpfiles/files/epfiles/383-4-356%20ST%20Version%200%208.pdf |
| manufacturer |
Rapid7 LLC |
VMware Inc. |
| manufacturer_web |
https://www.rapid7.com/ |
https://www.vmware.com |
| security_level |
ALC_FLR.2, EAL3+ |
EAL2+, ALC_FLR.2 |
| dgst |
7b44aee232c7dae0 |
141e6b0af31f2ede |
| heuristics/cert_id |
383-4-148 |
383-4-356 |
| heuristics/cert_lab |
CANADA |
[] |
| heuristics/cpe_matches |
cpe:2.3:a:rapid7:nexpose:-:*:*:*:*:*:*:* |
cpe:2.3:a:vmware:horizon:6.2.2:*:*:*:*:*:*:* |
| heuristics/verified_cpe_matches |
{} |
{} |
| heuristics/related_cves |
CVE-2017-5243, CVE-2012-6493, CVE-2022-0758, CVE-2017-5264, CVE-2017-5232, CVE-2017-5230, CVE-2020-7381, CVE-2022-4261, CVE-2019-5640, CVE-2020-7382, CVE-2021-3535, CVE-2012-6494, CVE-2021-31868, CVE-2019-5638, CVE-2023-1699, CVE-2020-7383, CVE-2022-0757 |
{} |
| heuristics/direct_transitive_cves |
{} |
{} |
| heuristics/indirect_transitive_cves |
{} |
{} |
| heuristics/extracted_sars |
ALC_FLR.2, ADV_ARC.1, ADV_FSP.3, AGD_OPE.1, ALC_CMC.3, ATE_COV.2, ALC_CMS.3, AGD_PRE.1, ALC_DEL.1, ASE_SPD.1, ALC_LCD.1, ASE_OBJ.2, ASE_REQ.2, ADV_TDS.2, AVA_VAN.2, ATE_FUN.1, ASE_TSS.1, ALC_DVS.1, ATE_IND.2, ASE_CCL.1, ATE_DPT.1, ASE_ECD.1, ASE_INT.1 |
ALC_FLR.2, ADV_ARC.1, ATE_COV.1, AGD_OPE.1, AGD_PRE.1, ALC_DEL.1, ASE_SPD.1, ADV_TDS.1, ASE_OBJ.2, ASE_REQ.2, AVA_VAN.2, ATE_FUN.1, ASE_TSS.1, ATE_IND.2, ALC_CMC.2, ASE_CCL.1, ALC_CMS.2, ASE_ECD.1, ASE_INT.1, ADV_FSP.2 |
| heuristics/extracted_versions |
5.1 |
6.2.2, 3.5.2 |
| heuristics/prev_certificates |
{} |
{} |
| heuristics/next_certificates |
{} |
{} |
| heuristics/report_references/directly_referenced_by |
{} |
{} |
| heuristics/report_references/directly_referencing |
{} |
{} |
| heuristics/report_references/indirectly_referenced_by |
{} |
{} |
| heuristics/report_references/indirectly_referencing |
{} |
{} |
| heuristics/scheme_data |
|
|
| heuristics/st_references/directly_referenced_by |
{} |
{} |
| heuristics/st_references/directly_referencing |
{} |
{} |
| heuristics/st_references/indirectly_referenced_by |
{} |
{} |
| heuristics/st_references/indirectly_referencing |
{} |
{} |
| heuristics/protection_profiles |
{} |
{} |
| maintenance_updates |
|
|
| protection_profiles |
|
|
| protection_profile_links |
{} |
{} |
| pdf_data/cert_filename |
|
383-4-356 CT v1.1e.docx |
| pdf_data/cert_frontpage |
|
|
| pdf_data/cert_keywords/cc_cert_id |
|
|
| pdf_data/cert_keywords/cc_protection_profile_id |
|
|
| pdf_data/cert_keywords/cc_security_level |
|
|
| pdf_data/cert_keywords/cc_sar |
|
|
| pdf_data/cert_keywords/cc_sfr |
|
|
| pdf_data/cert_keywords/cc_claims |
|
|
| pdf_data/cert_keywords/vendor |
|
|
| pdf_data/cert_keywords/eval_facility |
|
|
| pdf_data/cert_keywords/symmetric_crypto |
|
|
| pdf_data/cert_keywords/asymmetric_crypto |
|
|
| pdf_data/cert_keywords/pq_crypto |
|
|
| pdf_data/cert_keywords/hash_function |
|
|
| pdf_data/cert_keywords/crypto_scheme |
|
|
| pdf_data/cert_keywords/crypto_protocol |
|
|
| pdf_data/cert_keywords/randomness |
|
|
| pdf_data/cert_keywords/cipher_mode |
|
|
| pdf_data/cert_keywords/ecc_curve |
|
|
| pdf_data/cert_keywords/crypto_engine |
|
|
| pdf_data/cert_keywords/tls_cipher_suite |
|
|
| pdf_data/cert_keywords/crypto_library |
|
|
| pdf_data/cert_keywords/vulnerability |
|
|
| pdf_data/cert_keywords/side_channel_analysis |
|
|
| pdf_data/cert_keywords/technical_report_id |
|
|
| pdf_data/cert_keywords/device_model |
|
|
| pdf_data/cert_keywords/tee_name |
|
|
| pdf_data/cert_keywords/os_name |
|
|
| pdf_data/cert_keywords/cplc_data |
|
|
| pdf_data/cert_keywords/ic_data_group |
|
|
| pdf_data/cert_keywords/standard_id |
|
|
| pdf_data/cert_keywords/javacard_version |
|
|
| pdf_data/cert_keywords/javacard_api_const |
|
|
| pdf_data/cert_keywords/javacard_packages |
|
|
| pdf_data/cert_keywords/certification_process |
|
|
| pdf_data/cert_metadata |
|
|
| pdf_data/report_filename |
383-4-148_CR_english_v1 0.pdf |
383-4-356 CR v1.0e.pdf |
| pdf_data/report_frontpage |
- CA:
- cert_id: 383-4-148-CR
- cert_lab: CANADA
|
|
| pdf_data/report_keywords/cc_cert_id |
|
|
| pdf_data/report_keywords/cc_protection_profile_id |
|
|
| pdf_data/report_keywords/cc_security_level |
- EAL:
- EAL 3: 4
- EAL 3 augmented: 2
- EAL 3+: 3
|
|
| pdf_data/report_keywords/cc_sar |
|
|
| pdf_data/report_keywords/cc_sfr |
|
|
| pdf_data/report_keywords/cc_claims |
|
|
| pdf_data/report_keywords/vendor |
|
|
| pdf_data/report_keywords/eval_facility |
|
|
| pdf_data/report_keywords/symmetric_crypto |
|
|
| pdf_data/report_keywords/asymmetric_crypto |
|
|
| pdf_data/report_keywords/pq_crypto |
|
|
| pdf_data/report_keywords/hash_function |
|
|
| pdf_data/report_keywords/crypto_scheme |
|
|
| pdf_data/report_keywords/crypto_protocol |
|
|
| pdf_data/report_keywords/randomness |
|
|
| pdf_data/report_keywords/cipher_mode |
|
|
| pdf_data/report_keywords/ecc_curve |
|
|
| pdf_data/report_keywords/crypto_engine |
|
|
| pdf_data/report_keywords/tls_cipher_suite |
|
|
| pdf_data/report_keywords/crypto_library |
|
|
| pdf_data/report_keywords/vulnerability |
|
|
| pdf_data/report_keywords/side_channel_analysis |
|
|
| pdf_data/report_keywords/technical_report_id |
|
|
| pdf_data/report_keywords/device_model |
|
|
| pdf_data/report_keywords/tee_name |
|
|
| pdf_data/report_keywords/os_name |
|
|
| pdf_data/report_keywords/cplc_data |
|
|
| pdf_data/report_keywords/ic_data_group |
|
|
| pdf_data/report_keywords/standard_id |
|
|
| pdf_data/report_keywords/javacard_version |
|
|
| pdf_data/report_keywords/javacard_api_const |
|
|
| pdf_data/report_keywords/javacard_packages |
|
|
| pdf_data/report_keywords/certification_process |
|
|
| pdf_data/report_metadata |
- /Author: dewhite
- /CreationDate: D:20120608081731-04'00'
- /Creator: PScript5.dll Version 5.2.2
- /ModDate: D:20120608081731-04'00'
- /Producer: Acrobat Distiller 6.0 (Windows)
- /Title: Microsoft Word - 383-4-148_CR_english_v1 0.doc
- pdf_file_size_bytes: 53933
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 13
|
- /Author: White, Debra E.
- /Company: CSEC
- /CreationDate: D:20160916111055-04'00'
- /Creator: Acrobat PDFMaker 11 for Word
- /ModDate: D:20160916111127-04'00'
- /Producer: Adobe PDF Library 11.0
- /SourceModified: D:20160916145933
- /Title: 383-4-XXX CR v0.1
- pdf_file_size_bytes: 280616
- pdf_hyperlinks: mailto:[email protected]
- pdf_is_encrypted: False
- pdf_number_of_pages: 18
|
| pdf_data/st_filename |
Rapid7_CommonCriteria_STv1.7.pdf |
383-4-356 ST Version 0 8.pdf |
| pdf_data/st_frontpage |
|
|
| pdf_data/st_keywords/cc_cert_id |
|
|
| pdf_data/st_keywords/cc_protection_profile_id |
|
|
| pdf_data/st_keywords/cc_security_level |
- EAL:
- EAL3: 1
- EAL3 augmented: 1
- EAL3+: 1
|
- EAL:
- EAL 2: 2
- EAL2: 1
- EAL2+: 1
|
| pdf_data/st_keywords/cc_sar |
- ADV:
- ADV_ARC.1: 1
- ADV_FSP.3: 1
- ADV_TDS.2: 1
- AGD:
- AGD_OPE.1: 1
- AGD_PRE.1: 1
- ALC:
- ALC_CMC.3: 1
- ALC_CMS.3: 1
- ALC_DEL.1: 1
- ALC_DVS.1: 1
- ALC_FLR.2: 3
- ALC_LCD.1: 1
- ASE:
- ASE_CCL.1: 1
- ASE_ECD.1: 1
- ASE_INT.1: 1
- ASE_OBJ.2: 1
- ASE_REQ.2: 1
- ASE_SPD.1: 1
- ASE_TSS.1: 1
- ATE:
- ATE_COV.2: 1
- ATE_DPT.1: 1
- ATE_FUN.1: 1
- ATE_IND.2: 1
- AVA:
|
- ADV:
- ADV_ARC.1: 2
- ADV_FSP.2: 2
- ADV_TDS.1: 2
- AGD:
- AGD_OPE.1: 2
- AGD_PRE.1: 2
- ALC:
- ALC_CMC.2: 2
- ALC_CMS.2: 2
- ALC_DEL.1: 2
- ALC_FLR.2: 5
- ASE:
- ASE_CCL.1: 2
- ASE_ECD.1: 2
- ASE_INT.1: 2
- ASE_OBJ.2: 2
- ASE_REQ.2: 2
- ASE_SPD.1: 2
- ASE_TSS.1: 2
- ATE:
- ATE_COV.1: 2
- ATE_FUN.1: 2
- ATE_IND.2: 2
- AVA:
|
| pdf_data/st_keywords/cc_sfr |
- FAU:
- FAU_GEN: 1
- FAU_GEN.1: 9
- FAU_GEN.1.1: 1
- FAU_GEN.1.2: 1
- FAU_STG.1: 9
- FAU_STG.1.1: 1
- FAU_STG.1.2: 1
- FDP:
- FDP_ACC.1: 5
- FDP_ACC.1.1: 1
- FDP_ACF.1: 4
- FDP_ACF.1.1: 1
- FDP_ACF.1.2: 1
- FDP_ACF.1.3: 1
- FDP_ACF.1.4: 1
- FIA:
- FIA_AFL.1: 7
- FIA_AFL.1.1: 1
- FIA_AFL.1.2: 1
- FIA_ATD.1: 7
- FIA_ATD.1.1: 1
- FIA_UAU: 1
- FIA_UAU.1: 2
- FIA_UAU.2: 9
- FIA_UAU.2.1: 1
- FIA_UID.1: 3
- FIA_UID.2: 8
- FIA_UID.2.1: 1
- FMT:
- FMT_MOF.1: 10
- FMT_MOF.1.1: 1
- FMT_MTD: 2
- FMT_MTD.1: 8
- FMT_MTD.1.1: 2
- FMT_SMF.1: 9
- FMT_SMF.1.1: 1
- FMT_SMR: 2
- FMT_SMR.1: 7
- FMT_SMR.1.1: 1
- FMT_SMR.1.2: 1
- FPT:
- FTA:
- FTA_SSL.3: 7
- FTA_SSL.3.1: 1
|
- FCS:
- FCS_CKM.1: 17
- FCS_CKM.1.1: 2
- FCS_CKM.4: 11
- FCS_CKM.4.1: 1
- FCS_COP.1: 12
- FCS_COP.1.1: 1
- FDP:
- FDP_ACC: 2
- FDP_ACC.1: 29
- FDP_ACC.1.1: 2
- FDP_ACF: 2
- FDP_ACF.1: 28
- FDP_ACF.1.1: 2
- FDP_ACF.1.2: 2
- FDP_ACF.1.3: 2
- FDP_ACF.1.4: 2
- FIA:
- FIA_ATD.1: 8
- FIA_ATD.1.1: 1
- FIA_UAU.1: 3
- FIA_UAU.2: 7
- FIA_UAU.2.1: 1
- FIA_UAU.5: 7
- FIA_UAU.5.1: 1
- FIA_UAU.5.2: 1
- FIA_UID.1: 3
- FIA_UID.2: 9
- FIA_UID.2.1: 1
- FMT:
- FMT_SMF.1: 10
- FMT_SMF.1.1: 1
- FMT_SMR.1: 14
- FMT_SMR.1.1: 1
- FMT_SMR.1.2: 1
- FPT:
- FPT_ITC.1: 12
- FPT_ITC.1.1: 1
- FPT_ITI.1: 10
- FPT_ITI.1.1: 1
- FPT_ITI.1.2: 1
- FPT_ITT.1: 13
- FPT_ITT.1.1: 1
- FTA:
- FTA_SSL.3: 7
- FTA_SSL.3.1: 1
- FTA_SSL.4: 6
- FTA_SSL.4.1: 1
|
| pdf_data/st_keywords/cc_claims |
- A:
- A.ATTACK: 3
- A.CLIENT: 3
- A.CONNECT: 3
- A.ENV: 3
- A.INSTALL: 3
- A.INTEROP: 1
- A.INTROP: 2
- A.NOEVIL: 3
- A.PHYSICAL: 3
- A.PRIVIL: 3
- A.REMOTE: 3
- A.TRUSTED: 3
- O:
- O.ACCESS: 8
- O.ADMIN: 5
- O.AUDITS: 6
- O.IDAUTH: 10
- O.PROTECT: 8
- OE:
- OE.ATTACK: 3
- OE.CONNECT: 2
- OE.CREDENT: 3
- OE.ENV: 3
- OE.INSTALL: 3
- OE.INTROP: 3
- OE.NOEVIL: 4
- OE.PERSON: 2
- OE.PHYSICAL: 3
- OE.PRIVIL: 2
- OE.PROTECT: 1
- OE.REMOTE: 3
- OE.SSL: 3
- OE.TIME: 4
- OE.TRAIN: 3
- OE.TRUSTED: 4
- T:
- T.ACCESS: 3
- T.BRUTE: 3
- T.DELETE: 3
- T.ELEVATE: 3
- T.INTERCPT: 3
- T.MODIFY: 3
|
- A:
- A.CHANNEL_PROTECTION: 5
- A.PHYSICAL: 3
- A.VM_HOST: 2
- O:
- O.AUTH_USER: 8
- O.CHANNEL_PROTECTION: 8
- O.CONFIG_ACCESS: 9
- O.ENDPOINT_RESOURCE: 3
- O.SECURE_SETUP_DATA: 7
- O.USER_ACCESS: 7
- O.USE_FIPS: 5
- OE:
- OE.ADMIN_USERS: 3
- OE.AUTHENTICATE: 6
- OE.CHANNEL_PROTECTION: 9
- OE.CONFIG_SERVER: 5
- OE.CONFIG_TP_SW: 5
- OE.CONFIG_VM_HOST: 6
- OE.ENCRYPTION: 6
- OE.SERVER_PHYSICAL: 4
- T:
- T.ATTACK_ACCESS: 3
- T.INTERCEPT: 3
- T.SPOOF: 2
- T.USER_ACCESS: 2
- T.USER_DATA: 3
|
| pdf_data/st_keywords/vendor |
|
|
| pdf_data/st_keywords/eval_facility |
|
|
| pdf_data/st_keywords/symmetric_crypto |
|
|
| pdf_data/st_keywords/asymmetric_crypto |
|
|
| pdf_data/st_keywords/pq_crypto |
|
|
| pdf_data/st_keywords/hash_function |
|
|
| pdf_data/st_keywords/crypto_scheme |
|
|
| pdf_data/st_keywords/crypto_protocol |
|
- IPsec:
- TLS:
- TLS:
- TLS: 8
- TLS 1.2: 28
- TLSv1.2: 4
|
| pdf_data/st_keywords/randomness |
|
|
| pdf_data/st_keywords/cipher_mode |
|
|
| pdf_data/st_keywords/ecc_curve |
|
|
| pdf_data/st_keywords/crypto_engine |
|
|
| pdf_data/st_keywords/tls_cipher_suite |
|
- TLS:
- TLS_RSA_WITH_AES_128_CBC_SHA: 2
- TLS_RSA_WITH_AES_128_CBC_SHA256: 2
- TLS_RSA_WITH_AES_256_CBC_SHA: 2
- TLS_RSA_WITH_AES_256_CBC_SHA256: 2
|
| pdf_data/st_keywords/crypto_library |
|
|
| pdf_data/st_keywords/vulnerability |
|
|
| pdf_data/st_keywords/side_channel_analysis |
|
|
| pdf_data/st_keywords/technical_report_id |
|
|
| pdf_data/st_keywords/device_model |
|
|
| pdf_data/st_keywords/tee_name |
|
|
| pdf_data/st_keywords/os_name |
|
|
| pdf_data/st_keywords/cplc_data |
|
|
| pdf_data/st_keywords/ic_data_group |
|
|
| pdf_data/st_keywords/standard_id |
|
- FIPS:
- FIPS 140-2: 10
- FIPS 186-4: 2
- FIPS 197: 2
- FIPS140-2: 1
- RFC:
|
| pdf_data/st_keywords/javacard_version |
|
|
| pdf_data/st_keywords/javacard_api_const |
|
|
| pdf_data/st_keywords/javacard_packages |
|
|
| pdf_data/st_keywords/certification_process |
|
- OutOfScope:
- desktops and applications from your device of choice. However Mac, Ubuntu Linux, Mobile devices are out of scope for the evaluation. The physical components of the TOE include the software that is installed: 1
- out of scope: 1
|
| pdf_data/st_metadata |
- /Author: cbridges
- /CreationDate: D:20120511160512-04'00'
- /Creator: PScript5.dll Version 5.2.2
- /ModDate: D:20120511160512-04'00'
- /Producer: Acrobat Distiller 10.1.0 (Windows)
- /Title: Microsoft Word - Rapid7_CommonCriteria_STv1.7 - Copy.docx
- pdf_file_size_bytes: 178559
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 25
|
|
| state/cert/convert_garbage |
False |
True |
| state/cert/convert_ok |
False |
False |
| state/cert/download_ok |
False |
True |
| state/cert/extract_ok |
False |
False |
| state/cert/pdf_hash |
Different |
Different |
| state/cert/txt_hash |
Equal |
Equal |
| state/report/convert_garbage |
False |
False |
| state/report/convert_ok |
True |
True |
| state/report/download_ok |
True |
True |
| state/report/extract_ok |
True |
True |
| state/report/pdf_hash |
Different |
Different |
| state/report/txt_hash |
Different |
Different |
| state/st/convert_garbage |
False |
False |
| state/st/convert_ok |
True |
True |
| state/st/download_ok |
True |
True |
| state/st/extract_ok |
True |
True |
| state/st/pdf_hash |
Different |
Different |
| state/st/txt_hash |
Different |
Different |