| Vuln ID | Severity | Asset | STIG | Title | Status | Doc Status | Assigned To | Actions |
|---|---|---|---|---|---|---|---|---|
| V-218771 | CAT II | SCHR-P3-DP-001 | Microsoft IIS 10.0 Site Security Technic... | The IIS 10.0 website must have a unique applicatio... | - | |||
Check TextNote: If the IIS Application Pool is hosting Microsoft SharePoint, this is not applicable. Note: If the IIS 10.0 installation is supporting Microsoft Exchange and is not otherwise hosting any content, this requirement is not applicable. Open the IIS 10.0 Manager. Click "Application Pools". In the list of Application Pools, right-click any Application Pool, and select View Applications. Remove the filter using the prompt. Compare the Site and Application Pool columns. If any Application Pools are being used for more than one Site, this is a finding. Fix TextOpen the IIS 10.0 Manager. Click the site name under review. Assign a unique application pool to each website. Finding DetailsEvaluate-STIG 1.2601.0 (Scan-IIS10_0_Site_Checks) found this to be NOT A FINDING on 03/05/2026 Site: Default Web Site ResultHash: 5335ED9BAD61DF8DC37184AF69529D1843D12936 ~~~~~ ApplicationPool: DefaultAppPool WebSiteUsage: Default Web Site
Source: SCHR-P3-DP-001_IIS10Site_Default_Web_Site_V2R14_20260305-133115.cklb
Scan Date: 2026-03-12T15:38:14.459023
Technology Area: Web Review
|
||||||||