CCE-41988-7Platform: cpe:/o:microsoft:windows_10 | Date: (C)2016-09-23 (M)2023-07-04 |
Disable: 'Initiate definition update on startup' for DisableUpdateOnStartupWithoutEngine
This policy setting allows you to configure definition updates on startup when there is no antimalware engine present.
If you enable or do not configure this setting, definition updates will be initiated on startup when there is no antimalware engine present.
If you disable this setting, definition updates will not be initiated on startup when there is no antimalware engine present.
Counter Measure:
Configure this setting depending on your organization's requirements.
Potential Impact:
Definition updates will be initiated on startup when there is no antimalware engine present, which may affect startup time.
Parameter:
[enable/disable]
Technical Mechanism:
(1) GPO: Computer ConfigurationAdministrative TemplatesWindows ComponentsWindows DefenderSignature UpdatesInitiate definition update on startup
(2) REG: HKEY_LOCAL_MACHINESoftwarePoliciesMicrosoftWindows DefenderSignature UpdatesDisableUpdateOnStartupWithoutEngine
CCSS Severity: | CCSS Metrics: |
CCSS Score : 8.1 | Attack Vector: NETWORK |
Exploit Score: 2.2 | Attack Complexity: HIGH |
Impact Score: 5.9 | Privileges Required: NONE |
Severity: HIGH | User Interaction: NONE |
Vector: AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H | Scope: UNCHANGED |
| Confidentiality: HIGH |
| Integrity: HIGH |
| Availability: HIGH |
| |
References: Resource Id | Reference |
---|
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:35044 |