| Vuln ID | Severity | Asset | STIG | Title | Status | Doc Status | Assigned To | Actions |
|---|---|---|---|---|---|---|---|---|
| V-251546 | CAT I | MONT-WS-92040 | Mozilla Firefox Security Technical Imple... | Firefox must be configured to allow only TLS 1.2 o... | - | |||
Check TextType "about:policies" in the browser window. If "SSLVersionMin" is not displayed under Policy Name or the Policy Value is not "tls1.2" or "tls1.3", this is a finding. Fix TextWindows group policy: 1. Open the group policy editor tool with "gpedit.msc". 2. Navigate to Policy Path: Computer Configuration\Administrative Templates\Mozilla\Firefox\ Policy Name: Minimum SSL version enabled Policy State: Enabled Policy Value: TLS 1.2 (or TLS 1.3) macOS "plist" file: Add the following: <key>SSLVersionMin</key> <string>tls1.2</string> (or <string>tls1.3</string>) Linux "policies.json" file: Add the following in the policies section: "SSLVersionMin": "tls1.2" or ("SSLVersionMin": "tls1.3") Finding DetailsEvaluate-STIG 1.2507.5 (Scan-MozillaFirefox_Checks) found this to be NOT A FINDING on 10/23/2025 ResultHash: 4A1B334B1277709B8C673DCF44E7FB095B1934FF ~~~~~ 'Minimum SSL version enabled' is Enabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox Name: SSLVersionMin Value: tls1.2 Type: REG_SZ
Source: _Reviewed/MONT-WS-92040/Checklist/MONT-WS-92040_Firefox_V6R6_20251023-142444.ckl
Scan Date: 2026-01-14T12:57:25.596878
Technology Area: Windows Operating System
|
||||||||
| V-251546 | CAT I | MONT-WS-92010 | Mozilla Firefox Security Technical Imple... | Firefox must be configured to allow only TLS 1.2 o... | - | |||
Check TextType "about:policies" in the browser window. If "SSLVersionMin" is not displayed under Policy Name or the Policy Value is not "tls1.2" or "tls1.3", this is a finding. Fix TextWindows group policy: 1. Open the group policy editor tool with "gpedit.msc". 2. Navigate to Policy Path: Computer Configuration\Administrative Templates\Mozilla\Firefox\ Policy Name: Minimum SSL version enabled Policy State: Enabled Policy Value: TLS 1.2 (or TLS 1.3) macOS "plist" file: Add the following: <key>SSLVersionMin</key> <string>tls1.2</string> (or <string>tls1.3</string>) Linux "policies.json" file: Add the following in the policies section: "SSLVersionMin": "tls1.2" or ("SSLVersionMin": "tls1.3") Finding DetailsEvaluate-STIG 1.2507.5 (Scan-MozillaFirefox_Checks) found this to be NOT A FINDING on 10/23/2025 ResultHash: 4A1B334B1277709B8C673DCF44E7FB095B1934FF ~~~~~ 'Minimum SSL version enabled' is Enabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox Name: SSLVersionMin Value: tls1.2 Type: REG_SZ
Source: _Reviewed/MONT-WS-92010/Checklist/MONT-WS-92010_Firefox_V6R6_20251023-141154.ckl
Scan Date: 2026-01-14T12:57:27.870047
Technology Area: Windows Operating System
|
||||||||
| V-251546 | CAT I | MONT-SW-89108 | Mozilla Firefox Security Technical Imple... | Firefox must be configured to allow only TLS 1.2 o... | - | |||
Check TextType "about:policies" in the browser window. If "SSLVersionMin" is not displayed under Policy Name or the Policy Value is not "tls1.2" or "tls1.3", this is a finding. Fix TextWindows group policy: 1. Open the group policy editor tool with "gpedit.msc". 2. Navigate to Policy Path: Computer Configuration\Administrative Templates\Mozilla\Firefox\ Policy Name: Minimum SSL version enabled Policy State: Enabled Policy Value: TLS 1.2 (or TLS 1.3) macOS "plist" file: Add the following: <key>SSLVersionMin</key> <string>tls1.2</string> (or <string>tls1.3</string>) Linux "policies.json" file: Add the following in the policies section: "SSLVersionMin": "tls1.2" or ("SSLVersionMin": "tls1.3") Finding DetailsEvaluate-STIG 1.2510.0 (Scan-MozillaFirefox_Checks) found this to be NOT A FINDING on 12/17/2025 ResultHash: 4A1B334B1277709B8C673DCF44E7FB095B1934FF ~~~~~ 'Minimum SSL version enabled' is Enabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox Name: SSLVersionMin Value: tls1.2 Type: REG_SZ
Source: MONT-SW-89108_Firefox_V6R6_20251217-203042.ckl
Scan Date: 2026-03-04T15:25:15.868210
Technology Area: Windows Operating System
|
||||||||
| V-251546 | CAT I | MONT-SW-89134 | Mozilla Firefox Security Technical Imple... | Firefox must be configured to allow only TLS 1.2 o... | - | |||
Check TextType "about:policies" in the browser window. If "SSLVersionMin" is not displayed under Policy Name or the Policy Value is not "tls1.2" or "tls1.3", this is a finding. Fix TextWindows group policy: 1. Open the group policy editor tool with "gpedit.msc". 2. Navigate to Policy Path: Computer Configuration\Administrative Templates\Mozilla\Firefox\ Policy Name: Minimum SSL version enabled Policy State: Enabled Policy Value: TLS 1.2 (or TLS 1.3) macOS "plist" file: Add the following: <key>SSLVersionMin</key> <string>tls1.2</string> (or <string>tls1.3</string>) Linux "policies.json" file: Add the following in the policies section: "SSLVersionMin": "tls1.2" or ("SSLVersionMin": "tls1.3") Finding DetailsEvaluate-STIG 1.2510.0 (Scan-MozillaFirefox_Checks) found this to be NOT A FINDING on 12/17/2025 ResultHash: 4A1B334B1277709B8C673DCF44E7FB095B1934FF ~~~~~ 'Minimum SSL version enabled' is Enabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox Name: SSLVersionMin Value: tls1.2 Type: REG_SZ
Source: MONT-SW-89134_Firefox_V6R6_20251217-201244.ckl
Scan Date: 2026-03-04T15:25:41.899130
Technology Area: Windows Operating System
|
||||||||