macOS 15 - Sequoia
The macOS system must disable AirDrop
STIG ID:
APPL-15-002009
|
SRG:
SRG-OS-000080-GPOS-00048
|
Severity:
Medium
|
CCI:
CCI-000213,CCI-000381,CCI-001443
|
Vulnerability ID:
V-268485
Description
AirDrop must be disabled to prevent file transfers to or from unauthorized devices.AirDrop allows users to share and receive files from other nearby Apple devices.Satisfies: SRG-OS-000080-GPOS-00048, SRG-OS-000095-GPOS-00049, SRG-OS-000300-GPOS-00118
Check
C-268485r1034395_chk
Verify the macOS system is configured to disable AirDrop with the following command:/usr/bin/osascript -l JavaScript << EOS$.NSUserDefaults.alloc.initWithSuiteName('com.apple.applicationaccess')\.objectForKey('allowAirDrop').jsEOSIf the result is not "false", this is a finding.
Fix
F-72416r1034394_fix
Configure the macOS system to disable AirDrop by installing the "com.apple.applicationaccess" configuration profile.