CCE-99850-0Platform: cpe:/o:microsoft:windows_server_2019 | Date: (C)2023-05-09 (M)2023-07-04 |
This policy setting controls whether additional diagnostic logs are collected when more information is needed to troubleshoot a problem on the device. Diagnostic logs are only sent when the device has been configured to send optional diagnostic data.
By enabling this policy setting, diagnostic logs will not be collected.
If you disable or do not configure this policy setting, we may occasionally collect diagnostic logs if the device has been configured to send optional diagnostic data.
Fix:
(1) GPO: Computer ConfigurationAdministrative TemplatesWindows ComponentsData Collection and Preview BuildsLimit Diagnostic Log Collection
(2) REG: HKEY_LOCAL_MACHINESoftwarePoliciesMicrosoftWindowsDataCollection!LimitDiagnosticLogCollection
Parameter:
[enabled/disabled]
Technical Mechanism:
(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Data Collection and Preview Builds\Limit Diagnostic Log Collection
(2) REG: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\DataCollection!LimitDiagnosticLogCollection
CCSS Severity: | CCSS Metrics: |
CCSS Score : 3.7 | Attack Vector: NETWORK |
Exploit Score: 2.2 | Attack Complexity: HIGH |
Impact Score: 1.4 | Privileges Required: NONE |
Severity: LOW | User Interaction: NONE |
Vector: AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N | Scope: UNCHANGED |
| Confidentiality: LOW |
| Integrity: NONE |
| Availability: NONE |
| |
References: Resource Id | Reference |
---|
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:89603 |