Security Technical Implementation Guides (STIGs)

Vulnerability ID	Severity	Description
V-254482	Medium	Windows Server 2022 User Account Control (UAC) approval mode for the built-in Administrator must ...
V-205811	Medium	Windows Server 2019 User Account Control approval mode for the built-in Administrator must be ena...
V-253468	Medium	User Account Control approval mode for the built-in Administrator must be enabled
V-220944	Medium	User Account Control approval mode for the built-in Administrator must be enabled
V-254485	Medium	Windows Server 2022 User Account Control (UAC) must automatically deny standard user requests for...
V-205812	Medium	Windows Server 2019 User Account Control must automatically deny standard user requests for eleva...
V-253471	Medium	User Account Control must automatically deny elevation requests for standard users
V-220947	Medium	User Account Control must automatically deny elevation requests for standard users
V-254488	Medium	Windows Server 2022 User Account Control (UAC) must run all administrators in Admin Approval Mode...
V-205813	Medium	Windows Server 2019 User Account Control must run all administrators in Admin Approval Mode, enab...
V-253474	Medium	User Account Control must run all administrators in Admin Approval Mode, enabling UAC
V-220950	Medium	User Account Control must run all administrators in Admin Approval Mode, enabling UAC
V-253380	Medium	Users must be prompted for a password on resume from sleep (on battery)
V-220821	Medium	Users must be prompted for a password on resume from sleep (on battery)
V-253381	Medium	The user must be prompted for a password on resume from sleep (plugged in)
V-220822	Medium	The user must be prompted for a password on resume from sleep (plugged in)
V-254367	Medium	Windows Server 2022 Remote Desktop Services must always prompt a client for passwords upon connec...
V-205809	Medium	Windows Server 2019 Remote Desktop Services must always prompt a client for passwords upon connec...
V-253404	Medium	Remote Desktop Services must always prompt a client for passwords upon connection
V-220850	Medium	Remote Desktop Services must always prompt a client for passwords upon connection
V-254365	Medium	Windows Server 2022 must not save passwords in the Remote Desktop Client
V-205808	Medium	Windows Server 2019 must not save passwords in the Remote Desktop Client
V-253402	Medium	Passwords must not be saved in the Remote Desktop Client
V-220848	Medium	Passwords must not be saved in the Remote Desktop Client
V-224944	Medium	Passwords must not be saved in the Remote Desktop Client
V-224946	Medium	Remote Desktop Services must always prompt a client for passwords upon connection
V-224963	Medium	The Windows Remote Management (WinRM) service must not store RunAs credentials
V-254383	Medium	Windows Server 2022 Windows Remote Management (WinRM) service must not store RunAs credentials
V-205810	Medium	Windows Server 2019 Windows Remote Management (WinRM) service must not store RunAs credentials
V-253420	Medium	The Windows Remote Management (WinRM) service must not store RunAs credentials
V-220867	Medium	The Windows Remote Management (WinRM) service must not store RunAs credentials

Security Technical Implementation Guides (STIGs)

Product

Severity

SRG

CCIs

STIG IDs

Rule IDs

Tags

AppLocker

EventSentry

Security

stig