NIST 800-53 REV 5 • CONFIGURATION MANAGEMENT

CM-5(6)Limit Library Privileges

Limit privileges to change software resident within software libraries.

CMMC Practice Mapping

No direct CMMC mapping

NIST 800-171 Mapping

No direct NIST 800-171 mapping

Related Controls

Supplemental Guidance

Software libraries include privileged programs.

Practitioner Notes

This enhancement restricts the ability to modify shared software libraries — unauthorized changes to libraries could affect many systems at once.

Example 1: Restrict write access to your shared NuGet, npm, or PyPI package repositories to only designated library maintainers using repository access controls.

Example 2: Use read-only file permissions on shared DLL directories on application servers, requiring change requests and elevated access to modify any shared library files.

More Configuration Management Controls

CM-1 Policy and Procedures CM-2 Baseline Configuration CM-2(1) Reviews and Updates CM-2(2) Automation Support for Accuracy and Currency