Security Technical Implementation Guides (STIGs)

Vulnerability ID	Severity	Description
V-218792	Medium	The IIS 10.0 web server must not perform user management for hosted applications
V-268325	Medium	The Request Smuggling filter must be enabled