CCE-98055-7Platform: cpe:/o:microsoft:windows_server_2022:::x64 | Date: (C)2022-06-07 (M)2022-10-10 |
This policy setting lets you decide whether employees can override the Windows Defender SmartScreen warnings about potentially malicious websites.
If you enable this setting, employees can't ignore Windows Defender SmartScreen warnings and they are blocked from continuing to the site.
If you disable or don't configure this setting, employees can ignore Windows Defender SmartScreen warnings and continue to the site.
Fix:
(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Microsoft Edge\Prevent bypassing Windows Defender SmartScreen prompts for sites
(2) REG: HKEY_LOCAL_MACHINE or HKEY_CURRENT_USER\Software\Policies\Microsoft\MicrosoftEdge\PhishingFilter!PreventOverride
Parameter:
Technical Mechanism:
(1) GPO: Computer Configuration\\Administrative Templates\\Windows Components\\Microsoft Edge\\Prevent bypassing Windows Defender SmartScreen prompts for sites
(2) REG: HKEY_LOCAL_MACHINE or HKEY_CURRENT_USER\\Software\\Policies\\Microsoft\\MicrosoftEdge\\PhishingFilter!PreventOverride
CCSS Severity: | CCSS Metrics: |
CCSS Score : | Attack Vector: |
Exploit Score: | Attack Complexity: |
Impact Score: | Privileges Required: |
Severity: | User Interaction: |
Vector: | Scope: |
| Confidentiality: |
| Integrity: |
| Availability: |
| |
References: Resource Id | Reference |
---|
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:81309 |