CCE-91587-6Platform: cpe:/o:apple:mac_os_x:10.12 | Date: (C)2018-02-22 (M)2023-07-04 |
Disable Bluetooth
The Bluetooth kernel extension must be removed, as wireless access introduces unnecessary security risks. Removing Bluetooth support entirely mitigates this risk and ensures the operating system enforces this requirement.
Parameter:
[no/yes]
Technical Mechanism:
To check if there are any hardware components for Bluetooth loaded in the system, run the following command:
sudo kextstat | grep -i bluetooth
If there is a result, this is a finding.
CCSS Severity: | CCSS Metrics: |
CCSS Score : 7.8 | Attack Vector: LOCAL |
Exploit Score: 1.8 | Attack Complexity: LOW |
Impact Score: 5.9 | Privileges Required: NONE |
Severity: HIGH | User Interaction: REQUIRED |
Vector: AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H | Scope: UNCHANGED |
| Confidentiality: HIGH |
| Integrity: HIGH |
| Availability: HIGH |
| |
References: Resource Id | Reference |
---|
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:44197 |