An error occurred:
Close sidebar
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: releases-v2025.12.2 - rmfrev5
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: releases-v2025.12.2 - rmfrev5
Open sidebar
Navigate
Top
Search
Checks (
268
)
Print
Changes
Pages (
8/18
)
Microsoft Windows 10 STIG
Microsoft Windows 10 Security Technical Implementation Guide
v3 r5 (Released Oct. 1, 2025)
v3 r4 (Released April 2, 2025)
v3 r3 (Released Jan. 30, 2025)
v3 r2 (Released Nov. 15, 2024)
v3 r1 (Released July 24, 2024)
v2 r9 (Released May 15, 2024)
v2 r8 (Released Nov. 9, 2023)
v2 r7 (Released June 7, 2023)
v2 r6 (Released May 11, 2023)
v2 r5 (Released Nov. 14, 2022)
v2 r4 (Released May 31, 2022)
v2 r3 (Released Nov. 1, 2021)
v2 r2 (Released May 4, 2021)
v2 r1 (Released Nov. 13, 2020)
v1 r23 (Released June 17, 2020)
v1 r22 (Released May 15, 2020)
v1 r21 (Released April 24, 2020)
v1 r20 (Released Jan. 27, 2020)
v1 r19 (Released Oct. 25, 2019)
v1 r18 (Released July 26, 2019)
v1 r17 (Released May 24, 2019)
v1 r16 (Released Jan. 25, 2019)
v1 r15 (Released Nov. 15, 2018)
v1 r14 (Released July 27, 2018)
v1 r13 (Released April 27, 2018)
v1 r12 (Released Jan. 26, 2018)
v1 r11 (Released Oct. 31, 2017)
v1 r10 (Released June 27, 2017)
v1 r9 (Released April 28, 2017)
v1 r7 (Released Nov. 8, 2016)
ID
Vuln ID
Title
Cat
Status
WN10-CC-000007
V-220793
Windows 10 must cover or disable the built-in or attached camera when not in use.
Cat II
WN10-CC-000010
V-220794
The display of slide shows on the lock screen must be disabled.
Cat II
WN10-CC-000020
V-220795
IPv6 source routing must be configured to highest protection.
Cat II
WN10-CC-000025
V-220796
The system must be configured to prevent IP source routing.
Cat II
WN10-CC-000030
V-220797
The system must be configured to prevent Internet Control Message Protocol (ICMP) redirects from overriding Open Shortest Path First (OSPF) generated routes.
Cat III
WN10-CC-000035
V-220798
The system must be configured to ignore NetBIOS name release requests except from WINS servers.
Cat III
WN10-CC-000037
V-220799
Local administrator accounts must have their privileged token filtered to prevent elevated privileges from being used over the network on domain systems.
Cat II
WN10-CC-000038
V-220800
WDigest Authentication must be disabled.
Cat II
WN10-CC-000039
V-220801
Run as different user must be removed from context menus.
Cat II
WN10-CC-000040
V-220802
Insecure logons to an SMB server must be disabled.
Cat II
WN10-CC-000044
V-220803
Internet connection sharing must be disabled.
Cat II
WN10-CC-000050
V-250319
Hardened UNC paths must be defined to require mutual authentication and integrity for at least the \\*\SYSVOL and \\*\NETLOGON shares.
Cat II
WN10-CC-000052
V-220805
Windows 10 must be configured to prioritize ECC Curves with longer key lengths first.
Cat II
WN10-CC-000055
V-220806
Simultaneous connections to the internet or a Windows domain must be limited.
Cat II
WN10-CC-000060
V-220807
Connections to non-domain networks when connected to a domain authenticated network must be blocked.
Cat II
Prev
1...
4
5
6
7
8
9
10
11
12
...18
Next
Print
Display this benchmark in a printer-friendly format for off-line reference. This display does not include any commands.
Version Changes
If there are multiple versions of this benchmark, Xylok can display the differences between any changes in the checks.