Rule ID
SV-50562r1_rule
Version
V1R2
CCIs
The device acts as a personal hotspot when it accepts remote connections on a local area network interface for the purposes of routing traffic to a wide area network interface. The most common implementation is to accept local area Wi-Fi connections to reach ISP service provided by a cellular data carrier. The objective is to ensure the remote devices are not able to access any applications, data, or other operating system functionality on the device. A core assumption of the MOS SRG is that mobile devices do not serve applications to remote devices. If remote access to applications and data were feasible, this would open up a wide variety of vulnerabilities in which an adversary with a remote wireless capability could breach system security. Precluding this possibility greatly mitigates the risk of such an attack.
Navigate to "Options -> Storage & Sharing" and ensure "Wi-Fi Sharing" is set to "OFF". Otherwise, this is a finding.
Navigate to "Options -> Storage & Sharing" and set "Wi-Fi Sharing" to "OFF".