CCE-41844-2Platform: cpe:/o:microsoft:windows_10 | Date: (C)2016-09-23 (M)2023-07-04 |
Disable: 'Disallow Autoplay for non-volume devices'
This policy setting disallows AutoPlay for MTP devices like cameras or phones.
If you enable this policy setting, AutoPlay is not allowed for MTP devices like cameras or phones.
If you disable or do not configure this policy setting, AutoPlay is enabled for non-volume devices.
Counter Measure:
Enable this setting.
Potential Impact:
AutoPlay is not allowed for MTP devices like cameras or phones.
Parameter:
[enable/disable]
Technical Mechanism:
(1) GPO: Computer ConfigurationAdministrative TemplatesWindows ComponentsAutoPlay PoliciesDisallow Autoplay for non-volume devices
(2) REG: HKEY_LOCAL_MACHINESoftwarePoliciesMicrosoftWindowsExplorerNoAutoplayfornonVolume
CCSS Severity: | CCSS Metrics: |
CCSS Score : 6.4 | Attack Vector: PHYSICAL |
Exploit Score: 0.5 | Attack Complexity: HIGH |
Impact Score: 5.9 | Privileges Required: NONE |
Severity: MEDIUM | User Interaction: NONE |
Vector: AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H | Scope: UNCHANGED |
| Confidentiality: HIGH |
| Integrity: HIGH |
| Availability: HIGH |
| |
References: Resource Id | Reference |
---|
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:35033 |