NIST 800-53 REV 5 • MAINTENANCE

MA-3(6)Software Updates and Patches

Inspect maintenance tools to ensure the latest software updates and patches are installed.

CMMC Practice Mapping

No direct CMMC mapping

NIST 800-171 Mapping

No direct NIST 800-171 mapping

Related Controls

Supplemental Guidance

Maintenance tools using outdated and/or unpatched software can provide a threat vector for adversaries and result in a significant vulnerability for organizations.

Practitioner Notes

Maintenance tools themselves need to be kept current with the latest software updates and patches. An outdated diagnostic tool could have vulnerabilities that compromise the systems you are trying to maintain.

Example 1: Include maintenance tools in your regular patch management cycle. When you update your approved tools list, verify that each tool is running the latest version. Use a software inventory tool like PDQ Inventory or MECM to track versions across all maintenance workstations.

Example 2: Set calendar reminders to check for updates to your maintenance software monthly. Subscribe to vendor security advisories for your diagnostic tools. Document the current version of each tool in your approved tools list and update it whenever a new version is deployed.

More Maintenance Controls

MA-1 Policy and Procedures MA-2 Controlled Maintenance MA-2(1) Record Content MA-2(2) Automated Maintenance Activities