CCE-99793-2Platform: cpe:/o:microsoft:windows_server_2019 | Date: (C)2022-07-28 (M)2023-07-04 |
This policy setting determines the amount of diagnostic and usage data reported to Microsoft. A value of 0 indicates that no telemetry data from OS components is sent to Microsoft. Setting a value of 0 is applicable to enterprise and server devices only. Setting a value of 0 for other devices is equivalent to choosing a value of 1. A value of 1 sends only a limited, or basic, amount of diagnostic and usage data. Note: that setting values of 0 or 1 will degrade certain experiences on the device. A value of 2 sends enhanced diagnostic and usage data. A value of 3 sends the same data as a value of 2, plus additional diagnostics data, such as the system state at the time of a hang or crash, and the files and content that may have caused the problem.
If you disable or do not configure this policy setting, users can configure the Telemetry level in Settings.
Countermeasure:
Enable and configure this setting depending on your organization's requirements.
Potential Impact:
Users cannot determine the amount of diagnostic and usage Telemetry data that is reported to Microsoft.
Parameter:
[0 - security [enterprise only]/1 - basic/2 - enhanced/3 - full]
Technical Mechanism:
(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Data Collection and Preview Builds\Allow Telemetry
(2) REG: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\DataCollection!AllowTelemetry
CCSS Severity: | CCSS Metrics: |
CCSS Score : 5.9 | Attack Vector: NETWORK |
Exploit Score: 2.2 | Attack Complexity: HIGH |
Impact Score: 3.6 | Privileges Required: NONE |
Severity: MEDIUM | User Interaction: NONE |
Vector: AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N | Scope: UNCHANGED |
| Confidentiality: HIGH |
| Integrity: NONE |
| Availability: NONE |
| |
References: Resource Id | Reference |
---|
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:82098 |