Back
  • Misconfig Name
  • "Disallow Autoplay for non-volume devices" is not enabled
  • Description
  • The Windows Autoplay feature allows files to execute from MTP devices like cameras or phones once it is inserted or plugged into the computer. This may allow attackers to easily introduce malicious code to a system without user intervention. To prevent this, "Disallow Autoplay for non-volume devices" settings must be enabled.
  • Severity
  • Critical
  • Category
  • OS Security Hardening
  • Resolution
  • Follow the below steps in GPO to resolve the misconfiguration. Configure the policy value for Computer Configuration >> Administrative Templates >> Windows Components >> AutoPlay Policies >> "Disallow Autoplay for non-volume devices" to "Enabled".
  • Reboot Required
  • No