CCE-35084-3Platform: cpe:/o:microsoft:windows_8.1 | Date: (C)2015-10-14 (M)2023-07-04 |
Enable Hotspot Authentication
This policy setting defines whether Wi-Fi hotspots are probed for Wireless Internet Service Provider roaming (WISPr) protocol support.
If a Wi-Fi hotspot supports the WISPr protocol, users can submit credentials when manually connecting to the network. If authentication is successful, users will be connected automatically on subsequent attempts. Credentials can also be configured by network operators.
If you enable this policy setting, or if you do not configure this policy setting, Wi-Fi hotspots are automatically probed for WISPR protocol support.
If you disable this policy setting, Wi-Fi hotspots are not probed for WISPr protocol support, and users can only authenticate with Wi-Fi hotspots using a web browser.
Parameter:
[enable/disable]
Technical Mechanism:
(1) GPO: Computer ConfigurationAdministrative TemplatesNetworkHotspot Authentication!Enable Hotspot Authentication
(2) REG: HKEY_LOCAL_MACHINESoftwarePoliciesMicrosoftWindowsHotspotAuthentication!Enabled
CCSS Severity: | CCSS Metrics: |
CCSS Score : 8.2 | Attack Vector: NETWORK |
Exploit Score: 3.9 | Attack Complexity: LOW |
Impact Score: 4.2 | Privileges Required: NONE |
Severity: HIGH | User Interaction: NONE |
Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H | Scope: UNCHANGED |
| Confidentiality: LOW |
| Integrity: NONE |
| Availability: HIGH |
| |
References: Resource Id | Reference |
---|
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:29700 |