CCE-35983-6Platform: cpe:/o:microsoft:windows_server_2012::r2 | Date: (C)2015-10-08 (M)2023-07-04 |
WPD Devices: Deny read access
This policy setting denies read access to removable disks, which may include media players, cellular phones, auxiliary displays, and CE devices.
If you enable this policy setting, read access will be denied to this removable storage class.
If you disable or do not configure this policy setting, read access will be allowed to this removable storage class.
Parameter:
[enable/disable]
Technical Mechanism:
(1) GPO: Computer ConfigurationAdministrative TemplatesSystemRemovable Storage Access!WPD Devices: Deny read access
(2) REG: HKEY_LOCAL_MACHINESoftwarePoliciesMicrosoftWindowsRemovableStorageDevices{6AC27878-A6FA-4155-BA85-F98F491D4F33}!Deny_Read
CCSS Severity: | CCSS Metrics: |
CCSS Score : 4.6 | Attack Vector: PHYSICAL |
Exploit Score: 0.9 | Attack Complexity: LOW |
Impact Score: 3.6 | Privileges Required: NONE |
Severity: MEDIUM | User Interaction: NONE |
Vector: AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N | Scope: UNCHANGED |
| Confidentiality: HIGH |
| Integrity: NONE |
| Availability: NONE |
| |
References: Resource Id | Reference |
---|
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:27233 |