| Vuln ID | Severity | Asset | STIG | Title | Status | Doc Status | Assigned To | Actions |
|---|---|---|---|---|---|---|---|---|
| V-252881 | CAT II | MONT-WS-92040 | Mozilla Firefox Security Technical Imple... | Firefox must be configured to not delete data upon... | - | |||
Check TextType "about:policies" in the browser address bar. If "SanitizeOnShutdown" is not displayed under Policy Name or the Policy Value does not have {"Cache":false,"Cookies":false,"Downloads":false,"FormData":false,"Sessions":false,"History":false,"OfflineApps":false,"SiteSettings":false,"Locked":true}, this is a finding. Fix TextWindows group policy: 1. Open the group policy editor tool with "gpedit.msc". 2. Navigate to Policy Path: Computer Configuration\Administrative Templates\Mozilla\Firefox\Clear data when browser is closed Policy Name: Cache, Cookies, Download History, Form & Search History, Browsing History, Active Logins, Site Preferences, Offline Website Data Policy State: Disabled Policy Name: Locked Policy State: Enabled macOS "plist" file: Add the following: <key>SanitizeOnShutdown</key> <dict> <key>Cache</key> <false/> <key>Cookies</key> <false/> <key>Downloads</key> <false/> <key>FormData</key> <false/> <key>History</key> <false/> <key>Sessions</key> <false/> <key>SiteSettings</key> <false/> <key>OfflineApps</key> <false/> <key>Locked</key> <true/> </dict> Linux "policies.json" file: Add the following in the policies section: "SanitizeOnShutdown": { "Cache": false, "Cookies": false, "Downloads": false, "FormData": false, "History": false, "Sessions": false, "SiteSettings": false, "OfflineApps": false, "Locked": true } Finding DetailsEvaluate-STIG 1.2507.5 (Scan-MozillaFirefox_Checks) found this to be NOT A FINDING on 10/23/2025 ResultHash: 1E64720123BFAF6BC93D8E8F268B629CD52A80CF ~~~~~ 'Active Logins' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: Sessions Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Browsing History' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: History Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Cache' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: Cache Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Cookies' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: Cookies Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Download History' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: Downloads Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Form & Search History' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: FormData Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Locked' is Enabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: Locked Value: 0x00000001 (1) Type: REG_DWORD ----------------------------------------------------------------------- 'Offline Website Data' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: OfflineApps Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Site Preferences' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: SiteSettings Value: 0x00000000 (0) Type: REG_DWORD -----------------------------------------------------------------------
Source: _Reviewed/MONT-WS-92040/Checklist/MONT-WS-92040_Firefox_V6R6_20251023-142444.ckl
Scan Date: 2026-01-14T12:57:25.596878
Technology Area: Windows Operating System
|
||||||||
| V-252881 | CAT II | MONT-WS-92010 | Mozilla Firefox Security Technical Imple... | Firefox must be configured to not delete data upon... | - | |||
Check TextType "about:policies" in the browser address bar. If "SanitizeOnShutdown" is not displayed under Policy Name or the Policy Value does not have {"Cache":false,"Cookies":false,"Downloads":false,"FormData":false,"Sessions":false,"History":false,"OfflineApps":false,"SiteSettings":false,"Locked":true}, this is a finding. Fix TextWindows group policy: 1. Open the group policy editor tool with "gpedit.msc". 2. Navigate to Policy Path: Computer Configuration\Administrative Templates\Mozilla\Firefox\Clear data when browser is closed Policy Name: Cache, Cookies, Download History, Form & Search History, Browsing History, Active Logins, Site Preferences, Offline Website Data Policy State: Disabled Policy Name: Locked Policy State: Enabled macOS "plist" file: Add the following: <key>SanitizeOnShutdown</key> <dict> <key>Cache</key> <false/> <key>Cookies</key> <false/> <key>Downloads</key> <false/> <key>FormData</key> <false/> <key>History</key> <false/> <key>Sessions</key> <false/> <key>SiteSettings</key> <false/> <key>OfflineApps</key> <false/> <key>Locked</key> <true/> </dict> Linux "policies.json" file: Add the following in the policies section: "SanitizeOnShutdown": { "Cache": false, "Cookies": false, "Downloads": false, "FormData": false, "History": false, "Sessions": false, "SiteSettings": false, "OfflineApps": false, "Locked": true } Finding DetailsEvaluate-STIG 1.2507.5 (Scan-MozillaFirefox_Checks) found this to be NOT A FINDING on 10/23/2025 ResultHash: 1E64720123BFAF6BC93D8E8F268B629CD52A80CF ~~~~~ 'Active Logins' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: Sessions Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Browsing History' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: History Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Cache' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: Cache Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Cookies' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: Cookies Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Download History' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: Downloads Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Form & Search History' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: FormData Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Locked' is Enabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: Locked Value: 0x00000001 (1) Type: REG_DWORD ----------------------------------------------------------------------- 'Offline Website Data' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: OfflineApps Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Site Preferences' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: SiteSettings Value: 0x00000000 (0) Type: REG_DWORD -----------------------------------------------------------------------
Source: _Reviewed/MONT-WS-92010/Checklist/MONT-WS-92010_Firefox_V6R6_20251023-141154.ckl
Scan Date: 2026-01-14T12:57:27.870047
Technology Area: Windows Operating System
|
||||||||
| V-252881 | CAT II | MONT-SW-89108 | Mozilla Firefox Security Technical Imple... | Firefox must be configured to not delete data upon... | - | |||
Check TextType "about:policies" in the browser address bar. If "SanitizeOnShutdown" is not displayed under Policy Name or the Policy Value does not have {"Cache":false,"Cookies":false,"Downloads":false,"FormData":false,"Sessions":false,"History":false,"OfflineApps":false,"SiteSettings":false,"Locked":true}, this is a finding. Fix TextWindows group policy: 1. Open the group policy editor tool with "gpedit.msc". 2. Navigate to Policy Path: Computer Configuration\Administrative Templates\Mozilla\Firefox\Clear data when browser is closed Policy Name: Cache, Cookies, Download History, Form & Search History, Browsing History, Active Logins, Site Preferences, Offline Website Data Policy State: Disabled Policy Name: Locked Policy State: Enabled macOS "plist" file: Add the following: <key>SanitizeOnShutdown</key> <dict> <key>Cache</key> <false/> <key>Cookies</key> <false/> <key>Downloads</key> <false/> <key>FormData</key> <false/> <key>History</key> <false/> <key>Sessions</key> <false/> <key>SiteSettings</key> <false/> <key>OfflineApps</key> <false/> <key>Locked</key> <true/> </dict> Linux "policies.json" file: Add the following in the policies section: "SanitizeOnShutdown": { "Cache": false, "Cookies": false, "Downloads": false, "FormData": false, "History": false, "Sessions": false, "SiteSettings": false, "OfflineApps": false, "Locked": true } Finding DetailsEvaluate-STIG 1.2510.0 (Scan-MozillaFirefox_Checks) found this to be NOT A FINDING on 12/17/2025 ResultHash: 1E64720123BFAF6BC93D8E8F268B629CD52A80CF ~~~~~ 'Active Logins' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: Sessions Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Browsing History' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: History Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Cache' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: Cache Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Cookies' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: Cookies Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Download History' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: Downloads Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Form & Search History' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: FormData Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Locked' is Enabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: Locked Value: 0x00000001 (1) Type: REG_DWORD ----------------------------------------------------------------------- 'Offline Website Data' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: OfflineApps Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Site Preferences' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: SiteSettings Value: 0x00000000 (0) Type: REG_DWORD -----------------------------------------------------------------------
Source: MONT-SW-89108_Firefox_V6R6_20251217-203042.ckl
Scan Date: 2026-03-04T15:25:15.868210
Technology Area: Windows Operating System
|
||||||||
| V-252881 | CAT II | MONT-SW-89134 | Mozilla Firefox Security Technical Imple... | Firefox must be configured to not delete data upon... | - | |||
Check TextType "about:policies" in the browser address bar. If "SanitizeOnShutdown" is not displayed under Policy Name or the Policy Value does not have {"Cache":false,"Cookies":false,"Downloads":false,"FormData":false,"Sessions":false,"History":false,"OfflineApps":false,"SiteSettings":false,"Locked":true}, this is a finding. Fix TextWindows group policy: 1. Open the group policy editor tool with "gpedit.msc". 2. Navigate to Policy Path: Computer Configuration\Administrative Templates\Mozilla\Firefox\Clear data when browser is closed Policy Name: Cache, Cookies, Download History, Form & Search History, Browsing History, Active Logins, Site Preferences, Offline Website Data Policy State: Disabled Policy Name: Locked Policy State: Enabled macOS "plist" file: Add the following: <key>SanitizeOnShutdown</key> <dict> <key>Cache</key> <false/> <key>Cookies</key> <false/> <key>Downloads</key> <false/> <key>FormData</key> <false/> <key>History</key> <false/> <key>Sessions</key> <false/> <key>SiteSettings</key> <false/> <key>OfflineApps</key> <false/> <key>Locked</key> <true/> </dict> Linux "policies.json" file: Add the following in the policies section: "SanitizeOnShutdown": { "Cache": false, "Cookies": false, "Downloads": false, "FormData": false, "History": false, "Sessions": false, "SiteSettings": false, "OfflineApps": false, "Locked": true } Finding DetailsEvaluate-STIG 1.2510.0 (Scan-MozillaFirefox_Checks) found this to be NOT A FINDING on 12/17/2025 ResultHash: 1E64720123BFAF6BC93D8E8F268B629CD52A80CF ~~~~~ 'Active Logins' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: Sessions Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Browsing History' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: History Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Cache' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: Cache Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Cookies' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: Cookies Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Download History' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: Downloads Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Form & Search History' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: FormData Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Locked' is Enabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: Locked Value: 0x00000001 (1) Type: REG_DWORD ----------------------------------------------------------------------- 'Offline Website Data' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: OfflineApps Value: 0x00000000 (0) Type: REG_DWORD ----------------------------------------------------------------------- 'Site Preferences' is Disabled Path: HKLM:\SOFTWARE\Policies\Mozilla\Firefox\SanitizeOnShutdown Name: SiteSettings Value: 0x00000000 (0) Type: REG_DWORD -----------------------------------------------------------------------
Source: MONT-SW-89134_Firefox_V6R6_20251217-201244.ckl
Scan Date: 2026-03-04T15:25:41.899130
Technology Area: Windows Operating System
|
||||||||