CCE-46805-8Platform: cpe:/o:microsoft:windows_server_2016 | Date: (C)2017-08-03 (M)2023-07-04 |
This policy setting disallows AutoPlay for MTP devices like cameras or phones.
If you enable this policy setting, AutoPlay is not allowed for MTP devices like cameras or phones.
If you disable or do not configure this policy setting, AutoPlay is enabled for non-volume devices.
Vulnerability:
Disabling or not configuring this setting allows AutoPlay to start and access MTP devices without user approval and may expose confidential data.
Counter Measure:
Enable this setting.
Potential Impact:
AutoPlay is not allowed for MTP devices like cameras or phones.
Fix:
(1) GPO: Computer ConfigurationAdministrative TemplatesWindows ComponentsAutoPlay PoliciesDisallow Autoplay for non-volume devices
(2) REG: HKEY_LOCAL_MACHINESoftwarePoliciesMicrosoftWindowsExplorer!NoAutoplayfornonVolume
Parameter:
[enable/disable]
Technical Mechanism:
(1) GPO: Computer Configuration\Administrative Templates\Windows Components\AutoPlay Policies\Disallow Autoplay for non-volume devices
(2) REG: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\Explorer!NoAutoplayfornonVolume
CCSS Severity: | CCSS Metrics: |
CCSS Score : 6.4 | Attack Vector: PHYSICAL |
Exploit Score: 0.5 | Attack Complexity: HIGH |
Impact Score: 5.9 | Privileges Required: NONE |
Severity: MEDIUM | User Interaction: NONE |
Vector: AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H | Scope: UNCHANGED |
| Confidentiality: HIGH |
| Integrity: HIGH |
| Availability: HIGH |
| |
References: Resource Id | Reference |
---|
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:40327 |