Vulnerability Discussion
An operating system release is considered "supported" if the vendor continues to provide security patches for the product. With an unsupported release, it will not be possible to resolve security issues discovered in the system software.
Red Hat offers the Extended Update Support (EUS) Add-On to a Red Hat Enterprise Linux subscription, for a fee, for those customers who wish to standardize on a specific minor release for an extended period. RHEL 7.7 marks the final minor release that EUS will be available.
Check
Verify the version of the operating system is vendor supported.
Check the version of the operating system with the following command:
# cat /etc/redhat-release
Red Hat Enterprise Linux Server release 7.4 (Maipo)
Current End of Extended Update Support for RHEL 7.6 is 31 October 2020.
Current End of Extended Update Support for RHEL 7.7 is 31 August 2021.
Current End of Maintenance Support for RHEL 7.8 is 31 October 2020.
Current End of Maintenance Support for RHEL 7.9 is 30 April 2021.
If the release is not supported by the vendor, this is a finding.
Fix
Upgrade to a supported version of the operating system.