CCE-98577-0Platform: cpe:/o:microsoft:windows_10 | Date: (C)2022-06-03 (M)2023-07-04 |
Specifies the download method that Delivery Optimization can use in downloads of Windows Updates, Apps and App updates.
The following list shows the supported values:
0 = HTTP only, no peering.
1 = HTTP blended with peering behind the same NAT.
2 = HTTP blended with peering across a private group. Peering occurs on devices in the same Active Directory Site (if exist) or the same domain by default. When this option is selected, peering will cross NATs. To create a custom group use Group ID in combination with Mode 2.
3 = HTTP blended with Internet Peering.
99 = Simple download mode with no peering. Delivery Optimization downloads using HTTP only and does not attempt to contact the Delivery Optimization cloud services.
Fix:
(1) GPO: Computer ConfigurationAdministrative TemplatesWindows ComponentsDelivery OptimizationDownload Mode
(2) REG: HKEY_LOCAL_MACHINESOFTWAREPoliciesMicrosoftWindowsDeliveryOptimization!DODownloadMode
Parameter:
[HTTP only/LAN/Group/Internet/Simple/Bypass]
Technical Mechanism:
(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Delivery Optimization\Download Mode
(2) REG: HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\DeliveryOptimization!DODownloadMode
CCSS Severity: | CCSS Metrics: |
CCSS Score : 5.6 | Attack Vector: NETWORK |
Exploit Score: 2.2 | Attack Complexity: HIGH |
Impact Score: 3.4 | Privileges Required: NONE |
Severity: MEDIUM | User Interaction: NONE |
Vector: AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L | Scope: UNCHANGED |
| Confidentiality: LOW |
| Integrity: LOW |
| Availability: LOW |
| |
References: Resource Id | Reference |
---|
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:80703 |