U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.


Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Oracle 12c Database STIG Ver 2, Rel 7 Checklist Details (Checklist Revisions)

Supporting Resources:


Target CPE Name
Oracle Database 12c cpe:/a:oracle:database_server:12c (View CVEs)

Checklist Highlights

Checklist Name:
Oracle 12c Database STIG
Checklist ID:
Ver 2, Rel 7
Review Status:
Governmental Authority: Defense Information Systems Agency
Original Publication Date:

Checklist Summary:

The Oracle Database 12c Security Technical Implementation Guide (STIG) is published as a tool to improve the security of Department of Defense (DoD) information systems. This document is meant for use in conjunction with the Enclave, Network Infrastructure, Secure Remote Computing, and appropriate Operating System (OS) STIGs. It is based on the Database Security Requirements Guide (SRG) Version 1 Release 1, which in turn derives its cybersecurity controls from National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53, Revision 3.

Checklist Role:

  • Database Management System

Known Issues:

Not Provided

Target Audience:

Not Provided

Target Operational Environment:

  • Managed
  • Specialized Security-Limited Functionality (SSLF)

Testing Information:

Not Provided

Regulatory Compliance:

DoDD 8500.01


Not Provided


Not Provided

Product Support:

Not Provided

Point of Contact:



Not Provided


Not Provided

Change History:

moved to FINAL - 6/7/2016
updated to v1, r4 - 07/22/2016
Updated to FINAL - 09/12/2016
Updated STIG to V1, R5 - 10-28-2016
updated to FINAL - 12/07/2016
Updated to Ver 1, Rel 6 - 01/27/2017
Updated to FINAL - 03/08/2017
Updated to Ver 1, Rel 7 - 04/28/2017
Updated to FINAL - 05/30/2017
Updated URL to reflect change to the DISA website - http --> https
updated to v1,r9 - 02/16/2018
Updated to FINAL - 3/18/2018
updated to v1,r10 - 4/25/18
Updated to FINAL - 5/25/18
Updated to Ver 1, Rel 11 - 10/25/18
Updated to FINAL - 11/26/18
updated to Version 1, Release 12 - 1/22/19
Updated to FINAL - 2/19/19
Updated URLs - 6/13/19
Updated URLs - 8/12/2019
updated version - V1, R14 - 9/12/19
Updated to FINAL - 10/15/19
updated URLs - 11/1/19
updated to V1, R16 - removed reference link per DISA - 1/17/2020
Updated URLs per DISA - 4/24/2020
Changed URLs - 8/4/2020
updated URLs - 4/28/2021
updated URLs - 10/27/2021
updated URLs - 1/26/2022
Updated resource per DISA - 4/24/22
Updated resource per DISA - 8/1/22
updated URLs per DISA - 1/17/2023
Updated resource per DISA - 4/27/23


URL Description


Reference URL Description

NIST checklist record last modified on 04/27/2023