Vulnerability V-235753

V-235753

CAT III

URLs must be allowlisted for plugin use if used.

Ships Affected: 2
Total Findings: 5
Open: 0
Closed: 4

Check Text

This requirement for "Allow pop-up windows on specific sites" is not required; this is optional. The policy value for "Computer Configuration/Administrative Templates/Microsoft Edge/Content settings/Allow pop-up windows on specific sites" must be set to "Enabled". Use the Windows Registry Editor to navigate to the following key: HKLM\SOFTWARE\Policies\Microsoft\Edge "PopupsAllowedForUrls" must be set as follows: HKLM\SOFTWARE\Policies\Microsoft\Edge\PopupsAllowedForUrls\1 = mydomain.com HKLM\SOFTWARE\Policies\Microsoft\Edge\PopupsAllowedForUrls\2 = myagency.mil If configured, the list of domains for which Microsoft Edge allows pop-ups may be allowlisted.

Fix Text

Set the policy value for "Computer Configuration/Administrative Templates/Microsoft Edge/Content settings/Allow pop-up windows on specific sites" to "Enabled". A list of allowlisted URLs may be specified here.

STIG Reference

STIG: Microsoft Edge Security Technical Implementation Guide
Version: 2
Release: 5
Rule ID: SV-235753r1015297_rule

All Occurrences

This vulnerability appears on 2 ship(s)

Ship	Hull #	Source File	Assigned To	Scan Date	Actions
LAB BASELINES	BASELINE	SCHR-P3-DP-001_MSEdge_V2R4_20260305-132826.cklb	Unassigned	2026-03-12T15:38:14.495854	View in Context
USNS MONTFORD POINT	T-ESD-1	MONT-SW-89134_MSEdge_V2R3_20251217-201011.ckl	Unassigned	2026-03-04T15:25:42.078580	View in Context
USNS MONTFORD POINT	T-ESD-1	MONT-SW-89108_MSEdge_V2R3_20251217-202829.ckl	Unassigned	2026-03-04T15:25:16.059827	View in Context
USNS MONTFORD POINT	T-ESD-1	_Reviewed/MONT-WS-92010/Checklist/MONT-WS-92010_MSEdge_V2R3_20251023-141013.ckl	Unassigned	2026-01-14T12:57:28.003629	View in Context
USNS MONTFORD POINT	T-ESD-1	_Reviewed/MONT-WS-92040/Checklist/MONT-WS-92040_MSEdge_V2R3_20251023-142313.ckl	Unassigned	2026-01-14T12:57:25.750497	View in Context