V-278018
SV-278018r1180760_rule
CAT II
Windows Server 2025 must not have Bluetooth enabled unless required by the organization.
From: Microsoft Windows Server 2025 Security Technical Implementation Guide (V1R1)
Description
<VulnDiscussion>Unnecessary applications and/or services such as Bluetooth could allow an attacker to connect with intentions to take over or disrupt the system.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
Check Procedure
In the Windows search bar, type "Services". In the Services "Name" column look for the "Bluetooth Support Service". If this is set to "automatic", this is a finding.
Fix Text
Validate the site documentation to ensure the approval of use for Wi-Fi server connections. If the connection has not been approved, type "Services" in the Windows search bar. In the Services "Name " column, look for the "Bluetooth Support Service" and set this to "Disabled". Any Bluetooth devices listed or in use must be documented and approved by the information system security officer (ISSO) or authorizing official (AO).
CCI Reference
CCI-000382- Created
- 2026-04-07 20:08:26
- Last Updated
- 2026-04-07 20:08:26