CCE-43807-7Platform: cpe:/o:microsoft:windows_10 | Date: (C)2016-09-23 (M)2023-07-04 |
Disable: 'Don't allow SmartScreen Filter warning overrides for unverified files'
This setting lets you decide whether employees can override the SmartScreen Filter warnings about downloading unverified files.
Turning this setting on stops employees from ignoring the SmartScreen Filter warnings and blocks them from downloading unverified files.
Turning this setting off, or not configuring it, lets employees ignore the SmartScreen Filter warnings about unverified files and lets them continue the download process.
Counter Measure:
Enable this setting.
Potential Impact:
Users may not be able to download unverified files.
Parameter:
[enable/disable]
Technical Mechanism:
(1) GPO: Computer ConfigurationAdministrative TemplatesWindows ComponentsMicrosoft EdgeDon't allow SmartScreen Filter warning overrides for unverified files
(2) REG: HKEY_LOCAL_MACHINESoftwarePoliciesMicrosoftMicrosoftEdgePhishingFilterPreventOverrideAppRepUnknown
CCSS Severity: | CCSS Metrics: |
CCSS Score : 7.6 | Attack Vector: NETWORK |
Exploit Score: 2.8 | Attack Complexity: LOW |
Impact Score: 4.7 | Privileges Required: LOW |
Severity: HIGH | User Interaction: NONE |
Vector: AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L | Scope: UNCHANGED |
| Confidentiality: HIGH |
| Integrity: LOW |
| Availability: LOW |
| |
References: Resource Id | Reference |
---|
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:35319 |