Apple iOS/iPadOS 18 must disable copy/paste of data from managed to unmanaged applications.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-268062 | AIOS-18-014600 | SV-268062r1031242_rule | CCI-000366 | medium |
| Description | ||||
| If a user is able to configure the security setting, the user could inadvertently or maliciously set it to a value that poses unacceptable risk to DOD information systems. An adversary could exploit vulnerabilities created by the weaker configuration to compromise DOD sensitive information. SFRID: FMT_SMF.1.1 #47 | ||||
| STIG | Date | |||
| Apple iOS/iPadOS 18 Security Technical Implementation Guide | 2025-06-30 | |||
Related Frameworks
4 paths across 3 frameworks
Related Frameworks
NIST 800-531 mapping
CM-6
1.00
- DISA · 1 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
NIST 800-1712 mappings
3.4.1
1.00
- DISA · 1 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
3.4.2
1.00
- DISA · 1 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI1 mapping
CCI-000366
1.00
- DISA · 1 · disa_xccdf · related
Details
Check Text (C-268062r1031242_chk)
Note: If an organization has multiple configuration profiles, the check procedure must be performed on the relevant configuration profiles applicable to the scope of the review.
In the iOS management tool, verify "Require managed pasteboard" is set to "True".
If "Require managed pasteboard" is not set to "True", this is a finding.
Fix Text (F-71889r1030938_fix)
Configure the Apple iOS configuration profile to disable copy/paste of data from managed to unmanaged applications.
The procedure for implementing this control will vary depending on the MDM/EMM used by the mobile service provider.
In the MDM console, set "Require managed pasteboard" to "True".