Dell NetWorker Algorithm Downgrade (DSA-2025-268)

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(241313);
  script_version("1.2");
  script_set_attribute(attribute:"plugin_modification_date", value:"2025/07/04");

  script_cve_id("CVE-2025-36582");
  script_xref(name:"IAVA", value:"2025-A-0467");

  script_name(english:"Dell NetWorker Algorithm Downgrade (DSA-2025-268)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Windows host has an application installed that is affected by an algorithm downgrade vulnerability.");
  script_set_attribute(attribute:"description", value:
"The version of Dell EMC NetWorker installed on the remote Windows host is affected by a vulnerability. Dell NetWorker, 
versions prior to 19.11.0.5 or 19.12.x through 19.12.0.1, contains a Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade') 
vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to 
Information disclosure.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
  # https://www.dell.com/support/kbdoc/en-us/000338757/dsa-2025-268-security-update-for-dell-networker-selection-of-less-secure-algorithm-during-negotiation-vulnerability
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?c74ca8c0");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Dell NetWorker 19.13 or later or see vendor advisory.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:N");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2025-36582");

  script_set_attribute(attribute:"vuln_publication_date", value:"2025/07/01");
  script_set_attribute(attribute:"patch_publication_date", value:"2025/07/01");
  script_set_attribute(attribute:"plugin_publication_date", value:"2025/07/03");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:dell:networker");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Windows");

  script_copyright(english:"This script is Copyright (C) 2025 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("emc_networker_installed.nasl");
  script_require_keys("installed_sw/EMC NetWorker", "SMB/Registry/Enumerated");
  script_require_ports(139, 445);

  exit(0);
}

include('vcf.inc');

get_kb_item_or_exit('SMB/Registry/Enumerated');

var app_info = vcf::get_app_info(app:'EMC NetWorker', win_local:TRUE);

if (app_info['Management Console Installed'] == FALSE)

  audit(AUDIT_INST_PATH_NOT_VULN, 'EMC NetWorker', app_info.version, app_info.path);

var constraints = [
   {'max_version' : '19.11.0.5', 'fixed_display': '19.13'},
   {'min_version' : '19.12', 'max_version' : '19.12.0.1', 'fixed_display': '19.13'},
];

vcf::check_version_and_report(
  app_info:app_info,
  constraints:constraints,
  severity:SECURITY_WARNING
);