Vulnerability V-257589

V-257589

CAT II

Windows 10 must have command line process auditing events enabled for failures.

Ships Affected: 1
Total Findings: 4
Open: 2
Closed: 2

Check Text

Ensure Audit Process Creation auditing has been enabled: Computer Configuration >> Windows Settings >> Security Settings >> Advanced Audit Policy Configuration >>System Audit Policies >> Detailed Tracking >> Audit Process Creation". If "Audit Process Creation" is not set to "Failure", this is a finding.

Fix Text

Go to Computer Configuration >> Windows Settings >> Security Settings >> Advanced Audit Policy Configuration >>System Audit Policies >> Detailed Tracking >> Audit Process Creation is set to "failure".

STIG Reference

STIG: Microsoft Windows 10 Security Technical Implementation Guide
Version: 3
Release: 6
Rule ID: SV-257589r958412_rule

All Occurrences

This vulnerability appears on 1 ship(s)

Ship	Hull #	Source File	Assigned To	Scan Date	Actions
USNS MONTFORD POINT	T-ESD-1	MONT-SW-89134_Win10_V3R5_20251217-201218.ckl	Unassigned	2026-03-04T15:25:42.339596	View in Context
USNS MONTFORD POINT	T-ESD-1	MONT-SW-89108_Win10_V3R5_20251217-203019.ckl	Unassigned	2026-03-04T15:25:16.342077	View in Context
USNS MONTFORD POINT	T-ESD-1	_Reviewed/MONT-WS-92010/Checklist/MONT-WS-92010_Win10_V3R4_20251023-141133.ckl	Unassigned	2026-01-14T12:57:28.689048	View in Context
USNS MONTFORD POINT	T-ESD-1	_Reviewed/MONT-WS-92040/Checklist/MONT-WS-92040_Win10_V3R4_20251023-142421.ckl	Unassigned	2026-01-14T12:57:26.690022	View in Context