Cyber Resilience

NIST 800-53 r5 · Controls catalogue · Family AC

AC-11Device Lock

Prevent further access to the system by {{ insert: param, ac-11_odp.01 }} ; and Retain the device lock until the user reestablishes access using established identification and authentication procedures.

Last updated: 04 July 2026 00:28 UTC

Cumulative inbound coverage

How completely the frameworks we cross-walk collectively cover this — the verdict is the strongest single mapping (overlapping partials are not summed); breadth shows the corroboration behind it.

Collective: partial · 2 mapping(s) from 1 framework(s): ASVS 5.0 2 (partial)

See the full cumulative-coverage rollup →

Implementations targeting this control (0)

ATT&CK techniques this control mitigates (2)

Weaknesses this control addresses (3)AI

CWEs ranked by how often they appear in real CVEs. The rationale describes how this control reduces exploitability of each weakness class.

CWE Name CVEs Why this control addresses it
CWE-284Improper Access Control5,367Device lock enforces restricted access until re-authentication, directly reducing unauthorized use of active sessions.
CWE-306Missing Authentication for Critical Function2,820Requires established identification and authentication to unlock, mitigating missing authentication for continued system access.
CWE-613Insufficient Session Expiration642Locks the device (typically after inactivity) until re-authentication, addressing insufficient session expiration by preventing indefinite access.

Top CVEs where this control is the strongest mitigation

CVE Risk CVSS EPSS Match
CVE-2024-442865.57.50.0034good
CVE-2022-509765.57.70.0014good
CVE-2025-485685.57.40.0008good
CVE-2022-266297.09.10.0317good
CVE-2024-538355.57.80.0008partial
CVE-2024-437645.57.80.0008partial
CVE-2025-486055.58.40.0011good
CVE-2025-486025.58.40.0011good
CVE-2025-485775.57.40.0008good
CVE-2024-441363.54.60.0042good
CVE-2025-155545.57.80.0014good
CVE-2025-155525.57.80.0011partial
CVE-2026-254765.57.50.0031partial
CVE-2024-579573.56.60.0030good

Other controls in family AC

AC-1 AC-10 AC-12 AC-13 AC-14 AC-15 AC-16 AC-17 AC-18 AC-19 AC-2 AC-20 AC-21 AC-22 AC-23 AC-24 AC-25 AC-3 AC-4 AC-5 AC-6 AC-7 AC-8 AC-9