CCE-96718-2| Platform: cpe:/o:microsoft:windows_11 | Date: (C)2022-05-07 (M)2023-07-04 |
This policy setting allows you to specify the scan type to use during a scheduled scan. Scan type options are:
1 = Quick Scan (default)
2 = Full Scan
If you enable this setting, the scan type will be set to the specified value.
If you disable or do not configure this setting, the default scan type will used.
Countermeasure:
Configure this setting depending on your organization's requirements.
Potential Impact:
Scanning can impact performance.
Parameter:
[quick scan/full system scan]
Technical Mechanism:
(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Windows Defender\Scan\Specify the scan type to use for a scheduled scan
(2) REG: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows Defender\Scan!ScanParameters
| CCSS Severity: | CCSS Metrics: |
| CCSS Score : 2.5 | Attack Vector: LOCAL |
| Exploit Score: 1.0 | Attack Complexity: HIGH |
| Impact Score: 1.4 | Privileges Required: LOW |
| Severity: LOW | User Interaction: NONE |
| Vector: AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L | Scope: UNCHANGED |
| | Confidentiality: NONE |
| | Integrity: NONE |
| | Availability: LOW |
| | |
References: | Resource Id | Reference |
|---|
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:79423 |
