[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
CCE
view XML

CCE-43842-4

Platform: win10Date: (C)2016-09-23   (M)2022-10-10



Disable: 'Turn on raw volume write notifications' This policy setting controls whether raw volume write notifications are sent to behavior monitoring. If you enable or do not configure this setting, raw write notifications will be enabled. If you disable this setting, raw write notifications be disabled. Counter Measure: Configure this setting depending on your organization's requirements. Potential Impact: Raw volume write notifications can impact performance.


Parameter:


Technical Mechanism:

(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Windows Defender\Real-time Protection\Turn on raw volume write notifications (2) REG: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows Defender\Real-Time Protection\DisableRawWriteNotification

CCSS Severity:CCSS Metrics:
CCSS Score : Attack Vector:
Exploit Score: Attack Complexity:
Impact Score: Privileges Required:
Severity: User Interaction:
Vector: Scope:
 Confidentiality:
 Integrity:
 Availability:
  

References:
Resource IdReference
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:35333
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:35333
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:35333


OVAL    1
oval:org.secpod.oval:def:35333

© SecPod Technologies