Lucene search
This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.MACOS_MS21_MAY_DOTNET_CORE.NASLHistoryMay 13, 2021 - 12:00 a.m.
Security Update for .NET Core (May 2021) (macOS)
2021-05-1300:00:00
This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
17
7.4 High
AI Score
Confidence
High
The Microsoft .NET Core installation on the remote host is version 3.1.x prior to 3.1.15 or 5.x prior to 5.0.6. It is, therefore, affected by a privilege elevation vulnerability. An authenticated, local attacker can exploit this to elevate their privileges.
Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 70300
##
# (C) Tenable Network Security, Inc.
##
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(149472);
script_version("1.7");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/01/02");
script_cve_id("CVE-2021-31204");
script_xref(name:"IAVA", value:"2021-A-0218-S");
script_name(english:"Security Update for .NET Core (May 2021) (macOS)");
script_set_attribute(attribute:"synopsis", value:
"The remote macOS host is affected by a .NET Core privilege elevation vulnerability.");
script_set_attribute(attribute:"description", value:
"The Microsoft .NET Core installation on the remote host is version 3.1.x prior to 3.1.15 or 5.x prior to 5.0.6. It is,
therefore, affected by a privilege elevation vulnerability. An authenticated, local attacker can exploit this to elevate
their privileges.
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://dotnet.microsoft.com/download/dotnet-core/3.1");
script_set_attribute(attribute:"see_also", value:"https://dotnet.microsoft.com/download/dotnet/5.0");
script_set_attribute(attribute:"see_also", value:"https://devblogs.microsoft.com/dotnet/net-may-2021/");
# https://github.com/dotnet/core/blob/main/release-notes/3.1/3.1.15/3.1.15.md
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?cf5a364b");
# https://github.com/dotnet/core/blob/main/release-notes/5.0/5.0.6/5.0.6.md
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?9f5cbba7");
script_set_attribute(attribute:"solution", value:
"Update .NET Core, remove vulnerable packages and refer to vendor advisory.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-31204");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2021/05/11");
script_set_attribute(attribute:"patch_publication_date", value:"2021/05/11");
script_set_attribute(attribute:"plugin_publication_date", value:"2021/05/13");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:microsoft:.net_core");
script_set_attribute(attribute:"stig_severity", value:"II");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"MacOS X Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("macosx_dotnet_core_installed.nbin");
script_require_keys("installed_sw/.NET Core MacOS");
exit(0);
}
include('vcf.inc');
var app = '.NET Core MacOS';
var app_info = vcf::get_app_info(app:app);
var constraints = [
{ 'min_version' : '3.1', 'fixed_version' : '3.1.15' },
{ 'min_version' : '5.0', 'fixed_version' : '5.0.6' }
];
vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_WARNING);
Related
nessus
nessus
Oracle Linux 8 : dotnet5.0 (ELSA-2021-2036)
2021-05-29 00:00:00
RHEL 8 : dotnet5.0 (RHSA-2021:2036)
2021-05-19 00:00:00
RHEL 7 : .NET Core 3.1 on Red Hat Enterprise Linux (RHSA-2021:1547)
2021-05-13 00:00:00
prion
prion
Privilege escalation
2021-05-11 19:15:00
openvas
openvas
Fedora: Security Advisory for dotnet5.0 (FEDORA-2021-d551431950)
2021-05-20 00:00:00
Fedora: Security Advisory for dotnet5.0 (FEDORA-2021-a3c205f5b2)
2021-05-20 00:00:00
Fedora: Security Advisory for dotnet3.1 (FEDORA-2021-c06b64b5ee)
2021-05-20 00:00:00
almalinux
almalinux
Important: dotnet5.0 security and bugfix update
2021-05-19 07:18:44
Important: dotnet3.1 security and bugfix update
2021-05-19 07:18:50
oraclelinux
oraclelinux
dotnet5.0 security and bugfix update
2021-05-29 00:00:00
dotnet3.1 security and bugfix update
2021-05-29 00:00:00
osv
osv
BIT-dotnet-sdk-2021-31204
2024-03-06 10:59:48
BIT-dotnet-2021-31204
2024-03-06 10:59:39
redhat
redhat
mscve
mscve
.NET and Visual Studio Elevation of Privilege Vulnerability
2021-05-11 07:00:00
redhatcve
redhatcve
CVE-2021-31204
2021-05-11 20:55:44
fedora
fedora
[SECURITY] Fedora 33 Update: dotnet5.0-5.0.203-1.fc33
2021-05-18 00:48:05
[SECURITY] Fedora 33 Update: dotnet3.1-3.1.115-1.fc33
2021-05-18 00:48:06
[SECURITY] Fedora 32 Update: dotnet3.1-3.1.115-1.fc32
2021-05-18 01:06:33
archlinux
archlinux
[ASA-202105-20] dotnet-sdk: privilege escalation
2021-05-25 00:00:00
[ASA-202105-22] dotnet-runtime-3.1: privilege escalation
2021-05-25 00:00:00
[ASA-202105-23] dotnet-sdk-3.1: privilege escalation
2021-05-25 00:00:00
altlinux
altlinux
cve
cve
CVE-2021-31204
2021-05-11 19:15:00
kaspersky
kaspersky
KLA12173 Multiple vulnerabilities in Microsoft Developer Tools
2021-05-11 00:00:00
threatpost
threatpost
Wormable Windows Bug Opens Door to DoS, RCE
2021-05-11 20:05:44
rapid7blog
rapid7blog
Patch Tuesday - May 2021
2021-05-11 23:44:00
qualysblog
qualysblog