CCE-36574-2| Platform: cpe:/o:microsoft:windows_server_2012::r2 | Date: (C)2015-10-08 (M)2023-07-04 |
Do not allow connections without IPSec
If enabled then only those connections that are configured for IPSec may be established. If disabled then connections that are configured for IPSec or connections not configured for IPSec may be established.
Parameter:
[enable/disable]
Technical Mechanism:
(1) GPO: Computer ConfigurationAdministrative TemplatesSystemiSCSIiSCSI Security!Do not allow connections without IPSec
(2) REG: HKEY_LOCAL_MACHINESoftwarePoliciesMicrosoftWindowsiSCSI!RequireIPSec
| CCSS Severity: | CCSS Metrics: |
| CCSS Score : 8.0 | Attack Vector: ADJACENT_NETWORK |
| Exploit Score: 2.1 | Attack Complexity: LOW |
| Impact Score: 5.9 | Privileges Required: LOW |
| Severity: HIGH | User Interaction: NONE |
| Vector: AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H | Scope: UNCHANGED |
| | Confidentiality: HIGH |
| | Integrity: HIGH |
| | Availability: HIGH |
| | |
References: | Resource Id | Reference |
|---|
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:27550 |
