CCE-93730-0Platform: cpe:/o:microsoft:windows_server_2019 | Date: (C)2020-09-22 (M)2023-07-04 |
WPD Devices: Deny write access
This policy setting denies write access to removable disks, which may include media players, cellular phones, auxiliary displays, and CE devices.
If you enable this policy setting, write access will be denied to this removable storage class.
If you disable or do not configure this policy setting, write access will be allowed to this removable storage class.
Parameter:
[enable/disable]
Technical Mechanism:
(1) GPO: Computer ConfigurationAdministrative TemplatesSystemRemovable Storage Access!WPD Devices: Deny write access
(2) REG: HKEY_LOCAL_MACHINESoftwarePoliciesMicrosoftWindowsRemovableStorageDevices{6AC27878-A6FA-4155-BA85-F98F491D4F33}!Deny_Write
CCSS Severity: | CCSS Metrics: |
CCSS Score : 6.1 | Attack Vector: PHYSICAL |
Exploit Score: 0.9 | Attack Complexity: LOW |
Impact Score: 5.2 | Privileges Required: NONE |
Severity: MEDIUM | User Interaction: NONE |
Vector: AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H | Scope: UNCHANGED |
| Confidentiality: NONE |
| Integrity: HIGH |
| Availability: HIGH |
| |
References: Resource Id | Reference |
---|
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:56747 |