Lucene search
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.EMC_NETWORKER_DSA-2023-041.NASLHistoryMar 01, 2023 - 12:00 a.m.
Dell EMC NetWorker RCE (DSA-2023-041)
2023-03-0100:00:00
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
172
dell emc networker
remote code execution
vulnerability
windows host
upgrade
cve-2023-24576
0.006 Low
EPSS
Percentile
79.0%
The version of Dell EMC NetWorker installed on the remote Windows host is affected by a remote code execution vulnerability in the NetWorker Client execution service (nsrexecd) irrespective of any auth used.
Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
include('compat.inc');
if (description)
{
script_id(172033);
script_version("1.3");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/06/01");
script_cve_id("CVE-2023-24576");
script_xref(name:"IAVA", value:"2023-A-0117-S");
script_name(english:"Dell EMC NetWorker RCE (DSA-2023-041)");
script_set_attribute(attribute:"synopsis", value:
"The remote Windows host has an application installed that is affected by a remote code execution vulnerability.");
script_set_attribute(attribute:"description", value:
"The version of Dell EMC NetWorker installed on the remote Windows host is affected by a remote code execution
vulnerability in the NetWorker Client execution service (nsrexecd) irrespective of any auth used.
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
# https://www.dell.com/support/kbdoc/en-ie/000208258/dsa-2023-041-dell-networker-security-update-for-nsrdump-vulnerability
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?ab11956d");
script_set_attribute(attribute:"solution", value:
"Upgrade to Dell EMC NetWorker 19.7.0.3 or later.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-24576");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"vuln_publication_date", value:"2023/02/03");
script_set_attribute(attribute:"patch_publication_date", value:"2023/02/03");
script_set_attribute(attribute:"plugin_publication_date", value:"2023/03/01");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:dell:emc_networker");
script_set_attribute(attribute:"stig_severity", value:"I");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Windows");
script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("emc_networker_installed.nasl");
script_require_keys("installed_sw/EMC NetWorker", "SMB/Registry/Enumerated");
script_require_ports(139, 445);
exit(0);
}
include('vcf.inc');
get_kb_item_or_exit('SMB/Registry/Enumerated');
var app_info = vcf::get_app_info(app:'EMC NetWorker', win_local:TRUE);
var constraints = [
{ 'min_version' : '0.0', 'fixed_version' : '19.7.0.3' },
# As of writing, 19.8.0.0 is vuln but no fixed version exists
{ 'equal': '19.8.0.0', 'fixed_display': 'See vendor advisory'}
];
vcf::check_version_and_report(
app_info:app_info,
constraints:constraints,
severity:SECURITY_HOLE
);
| Vendor | Product | Version | CPE |
|---|---|---|---|
| dell | emc_networker | cpe:/a:dell:emc_networker |
Related
cvelist
cvelist
CVE-2023-24576
2023-02-03 17:21:30
cve
cve
CVE-2023-24576
2023-02-03 19:15:14
prion
prion
Remote code execution
2023-02-03 19:15:00
nvd
nvd
CVE-2023-24576
2023-02-03 19:15:14