CUI

USNS MONTFORD POINT - Findings

Back to Ship Export CSV Download POA&M

Showing 4 of 4 findings (filtered) View Documentation Status (90 tracked)

Vuln ID	Severity	Asset	STIG	Title	Status	Doc Status	Assigned To	Actions
V-223311	CAT II	MONT-WS-92040	Microsoft Office 365 ProPlus Security Te...	VBA Macros not digitally signed must be blocked in...		-
Check Text Verify the policy value for User Configuration >> Administrative Templates >> Microsoft Excel 2016 >> Excel Options >> Security >> Trust Center >> "Macro Notification Settings" is set to "Enabled" and "Disable VBA macros except digitally signed macros" from the Options is selected. Use the Windows Registry Editor to navigate to the following key: HKCU\software\policies\Microsoft\office\16.0\excel\security If the value vbawarnings is REG_DWORD = 3, this is not a finding. A value of REG_DWORD = 4 is also acceptable. If the registry key does not exist or is not configured properly, this is a finding. Fix Text Set the policy value for User Configuration >> Administrative Templates >> Microsoft Excel 2016 >> Excel Options >> Security >> Trust Center >> "Macro Notification Settings" is set to "Enabled" and select "Disable VBA macros except digitally signed macros" from the Options. Finding Details Evaluate-STIG 1.2507.5 (Scan-Office365_Checks) found this to be OPEN on 10/23/2025 Username: MONTFORD-POINT\W.Admin UserSID: S-1-5-21-1360995287-4027491577-3040029667-1106 ResultHash: 48A820BC171F3156C77314E945A7A64A74F38DF5 ~~~~~ 'VBA macro Notification Settings' is NOT Enabled: (Disable all except digitally signed macros) Registry Path: HKCU:\Software\Policies\Microsoft\Office\16.0\excel\security Value Name: vbawarnings Value: 0x00000002 (2) [Expected 3 or 4] Type: REG_DWORD Source: _Reviewed/MONT-WS-92040/Checklist/MONT-WS-92040_MSOffice365_V3R3_20251023-142330.ckl Scan Date: 2026-01-14T12:57:25.987513 Technology Area: Windows Operating System
V-223311	CAT II	MONT-WS-92010	Microsoft Office 365 ProPlus Security Te...	VBA Macros not digitally signed must be blocked in...		-
Check Text Verify the policy value for User Configuration >> Administrative Templates >> Microsoft Excel 2016 >> Excel Options >> Security >> Trust Center >> "Macro Notification Settings" is set to "Enabled" and "Disable VBA macros except digitally signed macros" from the Options is selected. Use the Windows Registry Editor to navigate to the following key: HKCU\software\policies\Microsoft\office\16.0\excel\security If the value vbawarnings is REG_DWORD = 3, this is not a finding. A value of REG_DWORD = 4 is also acceptable. If the registry key does not exist or is not configured properly, this is a finding. Fix Text Set the policy value for User Configuration >> Administrative Templates >> Microsoft Excel 2016 >> Excel Options >> Security >> Trust Center >> "Macro Notification Settings" is set to "Enabled" and select "Disable VBA macros except digitally signed macros" from the Options. Finding Details Evaluate-STIG 1.2507.5 (Scan-Office365_Checks) found this to be OPEN on 10/23/2025 Username: MONTFORD-POINT\D.Admin UserSID: S-1-5-21-1360995287-4027491577-3040029667-1104 ResultHash: 48A820BC171F3156C77314E945A7A64A74F38DF5 ~~~~~ 'VBA macro Notification Settings' is NOT Enabled: (Disable all except digitally signed macros) Registry Path: HKCU:\Software\Policies\Microsoft\Office\16.0\excel\security Value Name: vbawarnings Value: 0x00000002 (2) [Expected 3 or 4] Type: REG_DWORD Source: _Reviewed/MONT-WS-92010/Checklist/MONT-WS-92010_MSOffice365_V3R3_20251023-141031.ckl Scan Date: 2026-01-14T12:57:28.231385 Technology Area: Windows Operating System
V-223311	CAT II	MONT-SW-89108	Microsoft Office 365 ProPlus Security Te...	VBA Macros not digitally signed must be blocked in...		-
Check Text Verify the policy value for User Configuration >> Administrative Templates >> Microsoft Excel 2016 >> Excel Options >> Security >> Trust Center >> "Macro Notification Settings" is set to "Enabled" and "Disable VBA macros except digitally signed macros" from the Options is selected. Use the Windows Registry Editor to navigate to the following key: HKCU\software\policies\Microsoft\office\16.0\excel\security If the value vbawarnings is REG_DWORD = 3, this is not a finding. A value of REG_DWORD = 4 is also acceptable. If the registry key does not exist or is not configured properly, this is a finding. Fix Text Set the policy value for User Configuration >> Administrative Templates >> Microsoft Excel 2016 >> Excel Options >> Security >> Trust Center >> "Macro Notification Settings" is set to "Enabled" and select "Disable VBA macros except digitally signed macros" from the Options. Finding Details Evaluate-STIG 1.2510.0 (Scan-Office365_Checks) found this to be OPEN on 12/17/2025 Username: MONT-SW-89108\Scan.Admin UserSID: S-1-5-21-4163428051-2768110797-3591193048-1016 ResultHash: 48A820BC171F3156C77314E945A7A64A74F38DF5 ~~~~~ 'VBA macro Notification Settings' is NOT Enabled: (Disable all except digitally signed macros) Registry Path: HKCU:\Software\Policies\Microsoft\Office\16.0\excel\security Value Name: vbawarnings Value: 0x00000002 (2) [Expected 3 or 4] Type: REG_DWORD Source: MONT-SW-89108_MSOffice365_V3R4_20251217-202911.ckl Scan Date: 2026-03-04T15:25:16.145630 Technology Area: Windows Operating System
V-223311	CAT II	MONT-SW-89134	Microsoft Office 365 ProPlus Security Te...	VBA Macros not digitally signed must be blocked in...		-
Check Text Verify the policy value for User Configuration >> Administrative Templates >> Microsoft Excel 2016 >> Excel Options >> Security >> Trust Center >> "Macro Notification Settings" is set to "Enabled" and "Disable VBA macros except digitally signed macros" from the Options is selected. Use the Windows Registry Editor to navigate to the following key: HKCU\software\policies\Microsoft\office\16.0\excel\security If the value vbawarnings is REG_DWORD = 3, this is not a finding. A value of REG_DWORD = 4 is also acceptable. If the registry key does not exist or is not configured properly, this is a finding. Fix Text Set the policy value for User Configuration >> Administrative Templates >> Microsoft Excel 2016 >> Excel Options >> Security >> Trust Center >> "Macro Notification Settings" is set to "Enabled" and select "Disable VBA macros except digitally signed macros" from the Options. Finding Details Evaluate-STIG 1.2510.0 (Scan-Office365_Checks) found this to be OPEN on 12/17/2025 Username: MONT-SW-89134\dod_admin UserSID: S-1-5-21-4004422625-1934610219-1178763574-1001 ResultHash: 48A820BC171F3156C77314E945A7A64A74F38DF5 ~~~~~ 'VBA macro Notification Settings' is NOT Enabled: (Disable all except digitally signed macros) Registry Path: HKCU:\Software\Policies\Microsoft\Office\16.0\excel\security Value Name: vbawarnings Value: 0x00000002 (2) [Expected 3 or 4] Type: REG_DWORD Source: MONT-SW-89134_MSOffice365_V3R4_20251217-201101.ckl Scan Date: 2026-03-04T15:25:42.171357 Technology Area: Windows Operating System

CUI