CSCv7|7.2

Title

Disable Unnecessary or Unauthorized Browser or Email Client Plugins

Description

Uninstall or disable any unauthorized browser or email client plugins or add-on applications.

Reference Item Details

Category: Email and Web Browser Protections

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.3.1 (L2) Ensure 'Allow read access via the File System API on these sites' is set to 'Disabled'WindowsCIS Microsoft Edge v3.0.0 L2
1.3.3 (L2) Ensure 'Control use of JavaScript JIT' is set to 'Enabled: Do not allow any site to run JavaScript JIT'WindowsCIS Microsoft Edge v3.0.0 L2
1.3.4 (L2) Ensure 'Control use of the File System API for reading' is set to 'Enabled: Don't allow any site to request read access to files and directories via the File System API'WindowsCIS Microsoft Edge v3.0.0 L2
1.3.5 (L1) Ensure 'Control use of the File System API for writing' is set to 'Enabled: Don't allow any site to request write access to files and directories'WindowsCIS Microsoft Edge v3.0.0 L1
1.3.6 (L2) Ensure 'Control use of the Web Bluetooth API' is set to 'Enabled: Do not allow any site to request access to Bluetooth devices via the Web Bluetooth API'WindowsCIS Microsoft Edge v3.0.0 L2
1.3.7 (L2) Ensure 'Control use of the WebHID API' is set to 'Enabled: Do not allow any site to request access to HID devices via the WebHID API'WindowsCIS Microsoft Edge v3.0.0 L2
1.7.1 (L1) Ensure 'Configure users ability to override feature flags' is set to 'Enabled: Prevent users from overriding feature flags'WindowsCIS Microsoft Edge v3.0.0 L1
1.8.2 (L2) Ensure 'Configure extension management settings' is set to 'Enabled: *'WindowsCIS Microsoft Edge v3.0.0 L2
1.18 Ensure 'Enable security warnings for command-line flags' is set to 'Enabled'WindowsCIS Google Chrome L1 v3.0.0
1.39 (L1) Ensure 'Allow managed extensions to use the Enterprise Hardware Platform API' is set to 'Disabled'WindowsCIS Microsoft Edge v3.0.0 L1
1.45 (L1) Ensure 'Allow remote debugging' is set to 'Disabled'WindowsCIS Microsoft Edge v3.0.0 L1
1.47 (L2) Ensure 'Allow unconfigured sites to be reloaded in Internet Explorer mode' is set to 'Disabled'WindowsCIS Microsoft Edge v3.0.0 L2
1.53 (L2) Ensure 'AutoLaunch Protocols Component Enabled' is set to 'Disabled'WindowsCIS Microsoft Edge v3.0.0 L2
1.55 (L1) Ensure 'Automatically open downloaded MHT or MHTML files from the web in Internet Explorer mode' is set to 'Disabled'WindowsCIS Microsoft Edge v3.0.0 L1
1.75 (L2) Ensure 'Control use of the Serial API' is set to 'Enable: Do not allow any site to request access to serial ports via the Serial API'WindowsCIS Microsoft Edge v3.0.0 L2
1.104 (L1) Ensure 'Enable upload files from mobile in Microsoft Edge desktop' is set to 'Disabled'WindowsCIS Microsoft Edge v3.0.0 L1
1.124 (L1) Ensure 'Show the Reload in Internet Explorer mode button in the toolbar' is set to 'Disabled'WindowsCIS Microsoft Edge v3.0.0 L1
18.10.57.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2019 v3.0.1 L1 MS
18.10.57.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows 11 Stand-alone v3.0.0 L1 + BL
18.10.57.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2019 Stand-alone v2.0.0 L1 MS
18.10.57.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows 10 EMS Gateway v3.0.0 L1
18.10.57.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows 10 Enterprise v3.0.0 L1
18.10.57.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL
18.10.57.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows 11 Stand-alone v3.0.0 L1
18.10.57.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows 11 Enterprise v3.0.0 L1 + BL
18.10.57.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2016 v3.0.0 L1 MS
18.10.57.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2022 v3.0.0 L1 Domain Controller
18.10.57.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL + NG
18.10.57.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows 10 Enterprise v3.0.0 L1 + NG
18.10.57.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows 10 Stand-alone v3.0.0 L1
18.10.57.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL NG
18.10.57.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows 11 Enterprise v3.0.0 L1
18.10.57.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2019 v3.0.1 L1 DC
18.10.57.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2022 v3.0.0 L1 Member Server
18.10.57.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows 10 Stand-alone v3.0.0 L1 NG
18.10.57.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL
18.10.57.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2016 v3.0.0 L1 DC
18.10.57.1 Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2016 STIG v3.0.0 L1 MS
18.10.57.1 Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DC
18.10.57.1 Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MS
18.10.57.1 Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2016 STIG v3.0.0 L1 Domain Controller
18.10.58.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Windows Server 2012 R2 MS L1 v3.0.0
18.10.58.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2019 STIG v2.0.0 STIG DC
18.10.58.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Windows Server 2012 MS L1 v3.0.0
18.10.58.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Windows Server 2012 R2 DC L1 v3.0.0
18.10.58.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2019 STIG v2.0.0 L1 DC
18.10.58.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2019 STIG v2.0.0 L1 MS
18.10.58.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Windows Server 2012 DC L1 v3.0.0
18.10.58.1 (L1) Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2019 STIG v2.0.0 STIG MS
18.10.58.1 Ensure 'Prevent downloading of enclosures' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2022 STIG v1.0.0 L1 DC