| Reporter | Title | Published | Views | Family All 13 |
|---|---|---|---|---|
| Last Week’s Security news: PrintNightmare, Kaseya, Intune, Metasploit Docker escape | 5 Jul 202115:19 | – | avleonov | |
| The vulnerability of the Intune management extension for Windows operating systems allows a hacker to execute arbitrary code. | 16 Jun 202100:00 | – | bdu_fstec | |
| Microsoft Intune 代码注入漏洞 | 8 Jun 202100:00 | – | cnnvd | |
| CVE-2021-31980 | 8 Jun 202122:46 | – | cve | |
| CVE-2021-31980 Microsoft Intune Management Extension Remote Code Execution Vulnerability | 8 Jun 202122:46 | – | cvelist | |
| EUVD-2021-18852 | 7 Oct 202500:30 | – | euvd | |
| KLA12199 Multiple vulnerabilities in Microsoft Apps | 8 Jun 202100:00 | – | kaspersky | |
| Microsoft Intune Management Extension Remote Code Execution Vulnerability | 8 Jun 202107:00 | – | mscve | |
| Vulnerabilities fixed in Microsoft applications | 8 Jun 202100:00 | – | ncsc | |
| CVE-2021-31980 | 8 Jun 202123:15 | – | nvd |
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
include('compat.inc');
if (description)
{
script_id(243954);
script_version("1.2");
script_set_attribute(attribute:"plugin_modification_date", value:"2025/11/17");
script_cve_id("CVE-2021-31980");
script_name(english:"Microsoft Intune Management Extension < 1.41.203.0 (CVE-2021-31980)");
script_set_attribute(attribute:"synopsis", value:
"An instance of IME installed on the system is missing a security update.");
script_set_attribute(attribute:"description", value:
"Remote code execution vulnerability in the Microsoft Intune Management Extension < 1.41.203.0. The vulnerability allows an
unauthenticated attacker to execute arbitrary code on a target machine over the network.");
script_set_attribute(attribute:"see_also", value:"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-31980");
script_set_attribute(attribute:"solution", value:
"Upgrade to Intune Management Extension 1.41.203.0 or later.");
script_set_attribute(attribute:"agent", value:"windows");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-31980");
script_set_attribute(attribute:"vuln_publication_date", value:"2021/06/08");
script_set_attribute(attribute:"patch_publication_date", value:"2021/06/08");
script_set_attribute(attribute:"plugin_publication_date", value:"2025/08/06");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:microsoft:intune_management_extension");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Windows");
script_copyright(english:"This script is Copyright (C) 2025 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("microsoft_ime_installed.nbin");
script_require_keys("installed_sw/Intune Management Extension");
exit(0);
}
include('vdf.inc');
# @tvdl-content
var vuln_data = {
'metadata': {'spec_version': '1.0'},
'checks': [
{
'product': {'name': 'Intune Management Extension', 'type': 'app'},
'check_algorithm': 'default',
'constraints': [
{ 'fixed_version': '1.41.203.0'}
]
}
]
};
var result = vdf::check_and_report(vuln_data:vuln_data, severity:SECURITY_HOLE);
vdf::handle_check_and_report_errors(vdf_result:result);
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation