CCE-98569-7Platform: cpe:/o:microsoft:windows_10 | Date: (C)2022-06-03 (M)2023-07-04 |
This policy setting determines whether published User Activities can be uploaded.
If you enable this policy setting, activities of type User Activity are allowed to be uploaded.
If you disable this policy setting, activities of type User Activity are not allowed to be uploaded.
Deletion of activities of type User Activity are independent of this setting.
Policy change takes effect immediately.
Fix:
(1) GPO: Computer ConfigurationAdministrative TemplatesSystemOS PoliciesAllow upload of User Activities
(2) REG: HKEY_LOCAL_MACHINESoftwarePoliciesMicrosoftWindowsSystem!UploadUserActivities
Parameter:
[enable/disable]
Technical Mechanism:
(1) GPO: Computer Configuration\Administrative Templates\System\OS Policies\Allow upload of User Activities
(2) REG: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\System!UploadUserActivities
CCSS Severity: | CCSS Metrics: |
CCSS Score : 5.9 | Attack Vector: NETWORK |
Exploit Score: 2.2 | Attack Complexity: HIGH |
Impact Score: 3.6 | Privileges Required: NONE |
Severity: MEDIUM | User Interaction: NONE |
Vector: AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N | Scope: UNCHANGED |
| Confidentiality: HIGH |
| Integrity: NONE |
| Availability: NONE |
| |
References: Resource Id | Reference |
---|
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:80695 |