Security Technical Implementation Guides (STIGs)

Vulnerability ID	Severity	Description
V-268535	Medium	The macOS system must require that passwords contain a minimum of one numeric character
V-268536	Medium	The macOS system must restrict maximum password lifetime to 60 days
V-268537	Medium	The macOS system must require a minimum password length of 14 characters
V-268538	Medium	The macOS system must require that passwords contain a minimum of one special character
V-268548	Medium	The macOS system must set minimum password lifetime to 24 hours
V-277986	Medium	Windows Server 2025 passwords for the built-in Administrator account must be changed at least eve...
V-277989	Medium	Windows Server 2025 manually managed application account passwords must be at least 15 characters...
V-278005	Medium	Windows Server 2025 passwords must be configured to expire
V-278037	Medium	Windows Server 2025 maximum password age must be configured to 60 days or less
V-278038	Medium	Windows Server 2025 minimum password age must be configured to at least one day
V-278039	Medium	Windows Server 2025 must have the built-in Windows password complexity policy enabled