[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
CCE
view XML

CCE-44429-9

Platform: cpe:/o:microsoft:windows_10Date: (C)2016-09-23   (M)2023-07-04



Select the 'Let Windows apps access the microphone' to user_is_in_control This policy setting specifies whether Windows apps can access the microphone. If you choose the "User is in control" option, employees in your organization can decide whether Windows apps can access the microphone by using Settings > Privacy on the device. If you choose the "Force Allow" option, Windows apps are allowed to access the microphone and employees in your organization cannot change it. If you choose the "Force Deny" option, Windows apps are not allowed to access the microphone and employees in your organization cannot change it. If you disable or do not configure this policy setting, employees in your organization can decide whether Windows apps can access the microphone by using Settings > Privacy on the device. If an app is open when this Group Policy object is applied on a device, employees must restart the app or device for the policy changes to be applied to the app. Counter Measure: Enable and configure this setting to "Force Deny" depending on your organization's requirements. Potential Impact: Windows apps are not allowed to access the microphone and employees in your organization cannot change it.


Parameter:

[user is in control/force allow/force deny]


Technical Mechanism:

(1) GPO: Computer ConfigurationAdministrative TemplatesWindows ComponentsApp PrivacyLet Windows apps access the microphone (2) REG: HKEY_LOCAL_MACHINESoftwarePoliciesMicrosoftWindowsAppPrivacyLetAppsAccessMicrophone

CCSS Severity:CCSS Metrics:
CCSS Score : 2.9Attack Vector: LOCAL
Exploit Score: 1.4Attack Complexity: HIGH
Impact Score: 1.4Privileges Required: NONE
Severity: LOWUser Interaction: NONE
Vector: AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:NScope: UNCHANGED
 Confidentiality: LOW
 Integrity: NONE
 Availability: NONE
  

References:
Resource IdReference
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:35445


OVAL    1
oval:org.secpod.oval:def:35445
XCCDF    2
xccdf_org.secpod_benchmark_NIST_800_171_R1_Windows_10
xccdf_org.secpod_benchmark_general_Windows_10

© SecPod Technologies