Windows 11 must be configured to prevent users from receiving suggestions for third-party or additional applications.

STIG ID: WN11-CC-000390  |  SRG: SRG-OS-000095-GPOS-00049 |  Severity: low |  CCI: CCI-000381 |  Vulnerability Id: V-253425 | 

Vulnerability Discussion

Windows spotlight features may suggest apps and content from third-party software publishers in addition to Microsoft apps and content.

Check

If the following registry value does not exist or is not configured as specified, this is a finding:

Registry Hive: HKEY_CURRENT_USER
Registry Path: \SOFTWARE\Policies\Microsoft\Windows\CloudContent\

Value Name: DisableThirdPartySuggestions

Type: REG_DWORD
Value: 0x00000001 (1)

Fix

Configure the policy value for User Configuration >> Administrative Templates. >> Windows Components >> Cloud Content >> "Do not suggest third-party content in Windows spotlight" to "Enabled".