V-223385
SV-223385r961086_rule
CAT II
Files downloaded from the Internet must be opened in Protected view in PowerPoint.
From: Microsoft Office 365 ProPlus Security Technical Implementation Guide (V3R5)
Description
<VulnDiscussion>This policy setting allows you to determine if files downloaded from the Internet zone open in Protected View. If you enable this policy setting, files downloaded from the Internet zone do not open in Protected View. If you disable or do not configure this policy setting, files downloaded from the Internet zone open in Protected View.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
Check Procedure
Verify the policy value for User Configuration >> Administrative Templates >> Microsoft PowerPoint 2016 >> PowerPoint Options >> Security >> Trust Center >> Protected View "Do not open files from the Internet zone in Protected View" is set to "Disabled".
Use the Windows Registry Editor to navigate to the following key:
HKCU\Software\Policies\Microsoft\Office\16.0\PowerPoint\security\protectedview
If the value DisableInternetFilesInPV is REG_DWORD = 0, this is not a finding.
Fix Text
Set the policy value for User Configuration >> Administrative Templates >> Microsoft PowerPoint 2016 >> PowerPoint Options >> Security >> Trust Center >> Protected View "Do not open files from the Internet zone in Protected View" to "Disabled".
CCI Reference
CCI-001662- Created
- 2026-01-14 17:55:45
- Last Updated
- 2026-04-07 20:09:05