V-245539
CAT IISession only based cookies must be enabled.
- Ships Affected
- 1
- Total Findings
- 4
- Open
- 2
- Closed
- 2
Check Text
Universal method:
1. In the omnibox (address bar), type chrome://policy
2. If the policy "DefaultCookiesSetting" is not shown or is not set to "4", this is a finding.
Windows method:
1. Start regedit.
2. Navigate to HKLM\Software\Policies\Google\Chrome\DefaultCookiesSetting.
3. If this key does not exist, or is not set to "4", this is a finding.
Fix Text
Windows group policy:
1. Open the group policy editor tool with gpedit.msc
2. Navigate to Policy Path: Computer Configuration\Administrative Templates\Google\Google Chrome\Content Settings.
- Policy Name: Default cookies setting
- Policy State: Enabled
- Policy Value: Keep cookies for the duration of the session
STIG Reference
- STIG
- Google Chrome Current Windows Security Technical Implementation Guide
- Version
- 2
- Release
- 11
- Rule ID
- SV-245539r960864_rule
All Occurrences
This vulnerability appears on 1 ship(s)
| Ship | Hull # | Source File | Status | Assigned To | Scan Date | Actions |
|---|---|---|---|---|---|---|
| USNS MONTFORD POINT | T-ESD-1 | MONT-SW-89134_Chrome_V2R11_20251217-200930.ckl | Unassigned | 2026-03-04T15:25:41.812659 | View in Context | |
| USNS MONTFORD POINT | T-ESD-1 | MONT-SW-89108_Chrome_V2R11_20251217-202759.ckl | Unassigned | 2026-03-04T15:25:15.778437 | View in Context | |
| USNS MONTFORD POINT | T-ESD-1 | _Reviewed/MONT-WS-92010/Checklist/MONT-WS-92010_Chrome_V2R11_20251023-140804.ckl | Unassigned | 2026-01-14T12:57:27.625294 | View in Context | |
| USNS MONTFORD POINT | T-ESD-1 | _Reviewed/MONT-WS-92040/Checklist/MONT-WS-92040_Chrome_V2R11_20251023-142120.ckl | Unassigned | 2026-01-14T12:57:25.338171 | View in Context |