Scan to a file share is enabled but the file shares do not have the appropriate discretionary access control list in place.
An XCCDF Rule
Description
<VulnDiscussion>Without appropriate discretionary access controls unauthorized individuals may read the scanned data. This can lead to a compromise of sensitive data. The SA will ensure file shares have the appropriate discretionary access control list in place if scan to a file share is enabled.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility>System Administrator</Responsibility><IAControls></IAControls>
- ID
- SV-7027r1_rule
- Severity
- Low
- Updated
Remediation - Manual Procedure
Create the appropriate discretionary access control list for file shares if scan to a file share is enabled.