CSCv7|7.1

Title

Ensure Use of Only Fully Supported Browsers and Email Clients

Description

Ensure that only fully supported web browsers and email clients are allowed to execute in the organization, ideally only using the latest version of the browsers and email clients provided by the vendor.

Reference Item Details

Category: Email and Web Browser Protections

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.47 (L2) Ensure 'Allow unconfigured sites to be reloaded in Internet Explorer mode' is set to 'Disabled'WindowsCIS Microsoft Edge v3.0.0 L2
1.124 (L1) Ensure 'Show the Reload in Internet Explorer mode button in the toolbar' is set to 'Disabled'WindowsCIS Microsoft Edge v3.0.0 L1
2.1.3 Ensure notifications for internal users sending malware is Enabledmicrosoft_azureCIS Microsoft 365 Foundations E3 L1 v3.1.0
3.11.23.1 (L1) Ensure 'Disable Internet Explorer 11 as a standalone browser' is set to 'Enabled: Always'WindowsCIS Microsoft Intune for Windows 10 v3.0.1 L1
6.2.1 Ensure Protect Mail Activity in Mail Is EnabledUnixCIS Apple macOS 13.0 Ventura v2.1.0 L2
6.2.1 Ensure Protect Mail Activity in Mail Is EnabledUnixCIS Apple macOS 14.0 Sonoma v1.1.0 L2
6.3.1 Ensure Automatic Opening of Safe Files in Safari Is DisabledUnixCIS Apple macOS 13.0 Ventura v2.1.0 L1
6.3.1 Ensure Automatic Opening of Safe Files in Safari Is DisabledUnixCIS Apple macOS 14.0 Sonoma v1.1.0 L1
6.3.2 Audit History and Remove History ItemsUnixCIS Apple macOS 13.0 Ventura v2.1.0 L2
6.3.2 Audit History and Remove History ItemsUnixCIS Apple macOS 14.0 Sonoma v1.1.0 L2
6.3.3 Ensure Warn When Visiting A Fraudulent Website in Safari Is EnabledUnixCIS Apple macOS 13.0 Ventura v2.1.0 L1
6.3.3 Ensure Warn When Visiting A Fraudulent Website in Safari Is EnabledUnixCIS Apple macOS 14.0 Sonoma v1.1.0 L1
6.3.4 Ensure Prevent Cross-site Tracking in Safari Is EnabledUnixCIS Apple macOS 13.0 Ventura v2.1.0 L1
6.3.4 Ensure Prevent Cross-site Tracking in Safari Is EnabledUnixCIS Apple macOS 14.0 Sonoma v1.1.0 L1
6.3.5 Audit Hide IP Address in Safari SettingUnixCIS Apple macOS 13.0 Ventura v2.1.0 L2
6.3.5 Audit Hide IP Address in Safari SettingUnixCIS Apple macOS 14.0 Sonoma v1.1.0 L2
6.3.6 Ensure Advertising Privacy Protection in Safari Is EnabledUnixCIS Apple macOS 14.0 Sonoma v1.1.0 L1
6.3.6 Ensure Advertising Privacy Protection in Safari Is EnabledUnixCIS Apple macOS 13.0 Ventura v2.1.0 L1
6.3.7 Ensure Show Full Website Address in Safari Is EnabledUnixCIS Apple macOS 14.0 Sonoma v1.1.0 L1
6.3.7 Ensure Show Full Website Address in Safari Is EnabledUnixCIS Apple macOS 13.0 Ventura v2.1.0 L1
6.3.8 Audit AutoFillUnixCIS Apple macOS 13.0 Ventura v2.1.0 L2
6.3.8 Audit AutoFillUnixCIS Apple macOS 14.0 Sonoma v1.1.0 L2
6.3.9 Audit Pop-up WindowsUnixCIS Apple macOS 14.0 Sonoma v1.1.0 L1
6.3.9 Audit Pop-up WindowsUnixCIS Apple macOS 13.0 Ventura v2.1.0 L1
6.3.10 Ensure Show Status Bar Is EnabledUnixCIS Apple macOS 14.0 Sonoma v1.1.0 L1
6.3.10 Ensure Show Status Bar Is EnabledUnixCIS Apple macOS 13.0 Ventura v2.1.0 L1
7.1.1 Ensure Protect Mail Activity in Mail Is EnabledUnixCIS Apple macOS 10.15 Catalina v3.0.0 L2
7.1.1 Ensure Protect Mail Activity in Mail Is EnabledUnixCIS Apple macOS 12.0 Monterey v3.1.0 L2
7.1.1 Ensure Protect Mail Activity in Mail Is EnabledUnixCIS Apple macOS 11.0 Big Sur v4.0.0 L2
7.2.1 Ensure Automatic Opening of Safe Files in Safari Is DisabledUnixCIS Apple macOS 11.0 Big Sur v4.0.0 L1
7.2.1 Ensure Automatic Opening of Safe Files in Safari Is DisabledUnixCIS Apple macOS 10.15 Catalina v3.0.0 L1
7.2.1 Ensure Automatic Opening of Safe Files in Safari Is DisabledUnixCIS Apple macOS 12.0 Monterey v3.1.0 L1
7.2.2 Audit History and Remove History ItemsUnixCIS Apple macOS 12.0 Monterey v3.1.0 L2
7.2.10 Audit Pop-up WindowsUnixCIS Apple macOS 12.0 Monterey v3.1.0 L1
7.2.10 Ensure Pop-up Windows Are BlockedUnixCIS Apple macOS 11.0 Big Sur v4.0.0 L1
7.2.11 Ensure Javascript Is EnabledUnixCIS Apple macOS 11.0 Big Sur v4.0.0 L1
7.2.11 Ensure Show Status Bar Is EnabledUnixCIS Apple macOS 12.0 Monterey v3.1.0 L1
7.2.12 Ensure Show Status Bar Is EnabledUnixCIS Apple macOS 11.0 Big Sur v4.0.0 L1
18.10.34.1 (L1) Ensure 'Disable Internet Explorer 11 as a standalone browser' is set to 'Enabled: Always'WindowsCIS Microsoft Windows 10 EMS Gateway v3.0.0 L1
18.10.34.1 (L1) Ensure 'Disable Internet Explorer 11 as a standalone browser' is set to 'Enabled: Always'WindowsCIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL + NG
18.10.34.1 (L1) Ensure 'Disable Internet Explorer 11 as a standalone browser' is set to 'Enabled: Always'WindowsCIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL
18.10.34.1 (L1) Ensure 'Disable Internet Explorer 11 as a standalone browser' is set to 'Enabled: Always'WindowsCIS Microsoft Windows 10 Stand-alone v3.0.0 L1 NG
18.10.34.1 (L1) Ensure 'Disable Internet Explorer 11 as a standalone browser' is set to 'Enabled: Always'WindowsCIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL
18.10.34.1 (L1) Ensure 'Disable Internet Explorer 11 as a standalone browser' is set to 'Enabled: Always'WindowsCIS Microsoft Windows 10 Enterprise v3.0.0 L1 + NG
18.10.34.1 (L1) Ensure 'Disable Internet Explorer 11 as a standalone browser' is set to 'Enabled: Always'WindowsCIS Microsoft Windows 10 Enterprise v3.0.0 L1
18.10.34.1 (L1) Ensure 'Disable Internet Explorer 11 as a standalone browser' is set to 'Enabled: Always'WindowsCIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL NG
18.10.34.1 (L1) Ensure 'Disable Internet Explorer 11 as a standalone browser' is set to 'Enabled: Always'WindowsCIS Microsoft Windows 10 Stand-alone v3.0.0 L1
19.7.4.1 (L1) Ensure 'Do not preserve zone information in file attachments' is set to 'Disabled'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker
19.7.4.1 Ensure 'Do not preserve zone information in file attachments' is set to 'Disabled'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1
20.13 (L1) Ensure 'Web browser is supported and secured'WindowsCIS Microsoft Windows 10 EMS Gateway v3.0.0 L1