V-213138
CAT IIIAdobe Acrobat Pro DC Continuous Periodic downloading of Adobe certificates must be disabled.
- Ships Affected
- 1
- Total Findings
- 1
- Open
- 0
- Closed
- 1
Check Text
Verify the following registry configuration:
Using the Registry Editor, navigate to the following: HKEY_CURRENT_USER\Software\Adobe\Adobe Acrobat\DC\Security\cDigSig\cAdobeDownload
Value Name: bLoadSettingsFromURL
Type: REG_DWORD
Value: 0
If the value for bLoadSettingsFromURL is not set to “0” and Type is not configured to REG_DWORD or does not exist, this is a finding.
GUI path: Edit > Preferences > Trust Manager > In the 'Automatic Adobe Approved Trust List (AATL) Updates' section > verify the 'Load trusted certificates from an Adobe AATL server' is not checked. If the box is checked, this is a finding.
Admin Template path: User Configuration > Administrative Templates > Adobe Acrobat Pro DC Continuous > Preferences > Trust Manager > 'Load trusted certificates from an Adobe AATL server' must be set to 'Disabled'.
Fix Text
Configure the following registry value:
Registry Hive:
HKEY_CURRENT_USER
Registry Path:
\Software\Adobe\Adobe Acrobat\DC\Security\cDigSig\cAdobeDownload
Value Name: bLoadSettingsFromURL
Type: REG_DWORD
Value: 0
Configure the policy value for User Configuration > Administrative Templates > Adobe Acrobat Pro DC Continuous > Preferences > Trust Manager > 'Load trusted certificates from an Adobe AATL server' to 'Disabled'.
STIG Reference
- STIG
- Adobe Acrobat Professional DC Continuous Track Security Technical Implementation Guide
- Version
- 2
- Release
- 1
- Rule ID
- SV-213138r766568_rule
All Occurrences
This vulnerability appears on 1 ship(s)
| Ship | Hull # | Source File | Status | Assigned To | Scan Date | Actions |
|---|---|---|---|---|---|---|
| USNS MONTFORD POINT | T-ESD-1 | _Reviewed/MONT-WS-92010/Checklist/MONT-WS-92010_AdobeAcrobatProDCContinuous_V2R1_20251023-140757.ckl | Unassigned | 2026-01-14T12:57:27.516343 | View in Context |