Vulnerability V-251694

V-251694

CAT III

The list of domains media autoplay allows must be allowlisted if used.

Ships Affected: 2
Total Findings: 5
Open: 0
Closed: 3

Check Text

If this machine is on SIPRNet, this is Not Applicable. This requirement for "AutoplayAllowlist" is not required; this is optional. The policy value for "Computer Configuration/Administrative Templates/Microsoft Edge/Allow media autoplay on specific sites" may be set to "allow" for allowlisted domains. Use the Windows Registry Editor to navigate to the following key: HKLM\SOFTWARE\Policies\Microsoft\Edge AutoplayAllowlist may be set as follows: HKLM\SOFTWARE\Policies\Microsoft\Edge\AutoplayAllowlist\1 = mydomain.com HKLM\SOFTWARE\Policies\Microsoft\Edge\AutoplayAllowlist\2 = myagency.mil If configured, the list of domains for which autoplay is allowed may be allowlisted.

Fix Text

The policy value for "Computer Configuration/Administrative Templates/Microsoft Edge/Allow media autoplay on specific sites" may be set to "allow" for allowlisted domains.

STIG Reference

STIG: Microsoft Edge Security Technical Implementation Guide
Version: 2
Release: 5
Rule ID: SV-251694r960963_rule

All Occurrences

This vulnerability appears on 2 ship(s)

Ship	Hull #	Source File	Assigned To	Scan Date	Actions
LAB BASELINES	BASELINE	SCHR-P3-DP-001_MSEdge_V2R4_20260305-132826.cklb	Unassigned	2026-03-12T15:38:14.495854	View in Context
USNS MONTFORD POINT	T-ESD-1	MONT-SW-89134_MSEdge_V2R3_20251217-201011.ckl	Unassigned	2026-03-04T15:25:42.078580	View in Context
USNS MONTFORD POINT	T-ESD-1	MONT-SW-89108_MSEdge_V2R3_20251217-202829.ckl	Unassigned	2026-03-04T15:25:16.059827	View in Context
USNS MONTFORD POINT	T-ESD-1	_Reviewed/MONT-WS-92010/Checklist/MONT-WS-92010_MSEdge_V2R3_20251023-141013.ckl	Unassigned	2026-01-14T12:57:28.003629	View in Context
USNS MONTFORD POINT	T-ESD-1	_Reviewed/MONT-WS-92040/Checklist/MONT-WS-92040_MSEdge_V2R3_20251023-142313.ckl	Unassigned	2026-01-14T12:57:25.750497	View in Context