Detections
Analytics

CAT|I

Title

DISA Severity Level 1

Description

Any vulnerability, the exploitation of which will directly and immediately result in loss of Confidentiality, Availability, or Integrity.

Reference Item Details

Category: Severity Level

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.006 - Users with Administrative privilege are not documented or do not have separate accounts for administrative duties.WindowsDISA Windows Vista STIG v6r41
1.006-01 - Policy must require that administrative user accounts not be used with applications that access the internet.WindowsDISA Windows Vista STIG v6r41
2.005 - Systems must be at supported service packs (SP) or releases levels.WindowsDISA Windows Vista STIG v6r41
2.008 - Local volumes are not formatted using NTFS.WindowsDISA Windows Vista STIG v6r41
2.022 - Disallow AutoPlay/Autorun from Autorun.infWindowsDISA Windows Vista STIG v6r41
2.023 - Standard user accounts must only have Read permissions to the Winlogon registry key.WindowsDISA Windows Vista STIG v6r41
3.018 - Anonymous shares are not restricted. - RestrictAnonymousWindowsDISA Windows Vista STIG v6r41
3.018 - Anonymous shares are not restricted. - RestrictAnonymousSAMWindowsDISA Windows Vista STIG v6r41
3.030 - Anonymous access to the registry must be restricted.WindowsDISA Windows Vista STIG v6r41
3.031 - The Send download LanMan compatible password option is not set to Send NTLMv2 response only\refuse LM.WindowsDISA Windows Vista STIG v6r41
3.049 - The Recovery Console option is set to permit automatic logon to the system.WindowsDISA Windows Vista STIG v6r41
3.059 - The system is configured to autoplay removable media.WindowsDISA Windows Vista STIG v6r41
3.061 - Unencrypted remote access is permitted to system services.WindowsDISA Windows Vista STIG v6r41
3.062 - Anonymous SID/Name translation is allowed.WindowsDISA Windows Vista STIG v6r41
3.063 - Unauthorized named pipes are accessible with anonymous credentials.WindowsDISA Windows Vista STIG v6r41
3.064 - Unauthorized registry paths are remotely accessible.WindowsDISA Windows Vista STIG v6r41
3.065 - Unauthorized shares can be accessed anonymously.WindowsDISA Windows Vista STIG v6r41
3.068 - Solicited Remote Assistance is allowed.WindowsDISA Windows Vista STIG v6r41
3.073 - The system must be configured to prevent the storage of the LAN Manager hash of passwords.WindowsDISA Windows Vista STIG v6r41
3.108 - Unauthorized registry paths and sub-paths are remotely accessible.WindowsDISA Windows Vista STIG v6r41
3.116 - Named Pipes and Shares can be accessed anonymously.WindowsDISA Windows Vista STIG v6r41
4.005 - Unapproved Users have access to Debug programs.WindowsDISA Windows Vista STIG v6r41
4.009 - Unauthorized users are granted right to Act as part of the operating system.WindowsDISA Windows Vista STIG v6r41
4.017 - DOD information system access does not require the use of a password.WindowsDISA Windows Vista STIG v6r41
4.027 - Only administrators responsible for the system must have Administrator rights on the system.WindowsDISA Windows Vista STIG v6r41
4.036 - The use of local accounts with blank passwords is not restricted to console logons only.WindowsDISA Windows Vista STIG v6r41
5.005 - Installed FTP server is configured to allow access to the system drive.WindowsDISA Windows Vista STIG v6r41
5.007 - An approved, up-to-date, DoD antivirus program must be installed and used.WindowsDISA Windows Vista STIG v6r41
5.016 - Internet Information System (IIS) or its subcomponents are installed on a workstation.WindowsDISA Windows Vista STIG v6r41
AADC-CL-001075 - Unsupported versions of Adobe Acrobat Pro DC Classic must be uninstalled.WindowsDISA STIG Adobe Acrobat Pro DC Classic Track v2r1
AADC-CN-001075 - The Adobe Acrobat Pro DC Continuous latest security-related software updates must be installed.WindowsDISA STIG Adobe Acrobat Pro DC Continuous Track v2r1
ADBP-XI-001075 - The Adobe Acrobat Pro XI latest security-related software updates must be installed.WindowsDISA STIG ADOBE ACROBAT PROFESSIONAL (PRO) XI v1r2
ADBP-XI-005000 - An unsupported Adobe Acrobat Pro version must not be installed.WindowsDISA STIG ADOBE ACROBAT PROFESSIONAL (PRO) XI v1r2
AIOS-01-080006 - Apple iOS must require a valid password be successfully entered before the mobile device data is unencrypted.MDMMobileIron - DISA Apple iOS 10 v1r3
AIOS-01-080006 - Apple iOS must require a valid password be successfully entered before the mobile device data is unencrypted.MDMAirWatch - DISA Apple iOS 10 v1r3
AIOS-02-080017 - Apple iOS must implement the management setting: Encrypt iTunes backups.MDMMobileIron - DISA Apple iOS 10 v1r3
AIOS-02-080017 - Apple iOS must implement the management setting: Encrypt iTunes backups.MDMAirWatch - DISA Apple iOS 10 v1r3
AIOS-02-090103 - Apple iOS device must have the latest available iOS operating system installed.MDMMobileIron - DISA Apple iOS 10 v1r3
AIOS-02-090103 - Apple iOS device must have the latest available iOS operating system installed.MDMAirWatch - DISA Apple iOS 10 v1r3
AIOS-12-010500 - Apple iOS must require a valid password be successfully entered before the mobile device data is unencrypted.MDMMobileIron - DISA Apple iOS 12 v2r1
AIOS-12-010500 - Apple iOS must require a valid password be successfully entered before the mobile device data is unencrypted.MDMAirWatch - DISA Apple iOS 12 v2r1
AIOS-12-011400 - Apple iOS device must have the latest available iOS operating system installed.MDMMobileIron - DISA Apple iOS 12 v2r1
AIOS-12-011400 - Apple iOS device must have the latest available iOS operating system installed.MDMAirWatch - DISA Apple iOS 12 v2r1
AIOS-12-999999 - All Apple iOS 12 installations must be removed.MDMMobileIron - DISA Apple iOS 12 v2r1
AIOS-12-999999 - All Apple iOS 12 installations must be removed.MDMAirWatch - DISA Apple iOS 12 v2r1
AIOS-13-010500 - Apple iOS/iPadOS must require a valid password be successfully entered before the mobile device data is unencrypted.MDMAirWatch - DISA Apple iOS/iPadOS 13 v2r1
AIOS-13-010500 - Apple iOS/iPadOS must require a valid password be successfully entered before the mobile device data is unencrypted.MDMMobileIron - DISA Apple iOS/iPadOS 13 v2r1
AIOS-13-011400 - iPhone and iPad must have the latest available iOS operating system installed.MDMMobileIron - DISA Apple iOS/iPadOS 13 v2r1
AIOS-13-011400 - iPhone and iPad must have the latest available iOS operating system installed.MDMAirWatch - DISA Apple iOS/iPadOS 13 v2r1
AIOS-13-999999 - All Apple iOS/iPadOS 13 installations must be removed.MDMAirWatch - DISA Apple iOS/iPadOS 13 v2r1