Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Microsoft PowerShell Information Disclosure Vulnerability (Dec 2023) - Windows

🗓️ 13 Dec 2023 00:00:00Reported by Copyright (C) 2023 Greenbone AGType 
openvas
 openvas🔗 plugins.openvas.org👁 13 Views

Microsoft PowerShell Information Disclosure Vulnerability (Dec 2023) - Windows. Flaw in PowerShell Web cmdlets discloses authentication info, affecting versions 7.2-7.4 on Windows

Show more

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Related
Refs
Code
ReporterTitlePublishedViews
Family
Microsoft CVE		PowerShell Information Disclosure Vulnerability
17 Nov 202308:00
mscve
OpenVAS		Microsoft PowerShell Information Disclosure Vulnerability (Dec 2023) - Linux
13 Dec 202300:00
openvas
OpenVAS		Microsoft PowerShell Information Disclosure Vulnerability (Dec 2023) - Linux
13 Dec 202300:00
openvas
AlpineLinux		CVE-2023-36013
20 Nov 202316:15
alpinelinux
Tenable Nessus		Microsoft PowerShell 7.2.x < 7.2.17 / 7.3.x < 7.3.10 / 7.4.x < 7.4.0 Information Disclosure (macOS)
30 Nov 202300:00
nessus
Tenable Nessus		Photon OS 5.0: Powershell PHSA-2023-5.0-0180
24 Jul 202400:00
nessus
Cvelist		CVE-2023-36013 PowerShell Information Disclosure Vulnerability
20 Nov 202316:02
cvelist
Veracode		Information Disclosure
23 Nov 202306:48
veracode
Prion		Information disclosure
20 Nov 202316:15
prion
CVE		CVE-2023-36013
20 Nov 202316:15
cve
Rows per page
# SPDX-FileCopyrightText: 2023 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

CPE = "cpe:/a:microsoft:powershell";

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.832639");
  script_version("2024-02-20T14:37:13+0000");
  script_cve_id("CVE-2023-36013");
  script_tag(name:"cvss_base", value:"6.8");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:S/C:C/I:N/A:N");
  script_tag(name:"last_modification", value:"2024-02-20 14:37:13 +0000 (Tue, 20 Feb 2024)");
  script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2023-12-01 17:55:00 +0000 (Fri, 01 Dec 2023)");
  script_tag(name:"creation_date", value:"2023-12-13 11:16:35 +0530 (Wed, 13 Dec 2023)");
  script_name("Microsoft PowerShell Information Disclosure Vulnerability (Dec 2023) - Windows");

  script_tag(name:"summary", value:"This host is missing an important security
  update for PowerShell Core according to Microsoft security advisory
  CVE-2023-36013.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present
  on the target host.");

  script_tag(name:"insight", value:"The flaw exists when PowerShell Web cmdlets
  disclose authentication information in an error output in an error case.");

  script_tag(name:"impact", value:"Successful exploitation will allow attackers
  to disclose sensitive information on an affected system.");

  script_tag(name:"affected", value:"PowerShell Core versions 7.2 prior to 7.2.17,
  7.3 prior to 7.3.10, 7.4 prior to 7.4.0 on Windows.");

  script_tag(name:"solution", value:"Update to version 7.2.17 or 7.3.10 or 7.4.0
  or later. Please see the references for more information.");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"registry");
  script_xref(name:"URL", value:"https://github.com/PowerShell/Announcements/issues/55");
  script_xref(name:"URL", value:"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36013");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2023 Greenbone AG");
  script_family("General");
  script_dependencies("gb_powershell_core_detect_win.nasl");
  script_mandatory_keys("PowerShell/Win/Ver");
  exit(0);
}
include("version_func.inc");
include("host_details.inc");

if(!infos = get_app_version_and_location(cpe:CPE, exit_no_version:TRUE)) exit(0);
vers = infos["version"];
path = infos["location"];

if(vers =~ "^7\.2" && version_is_less(version:vers, test_version:"7.2.17")) {
  fix = "7.2.17";
}
else if(vers =~ "^7\.3" && version_is_less(version:vers, test_version:"7.3.10")) {
  fix = "7.3.10";
}
#Fix is 7.4.0, 7.4 RC.1 only affected
## In registry 7.4.0 = 7.4.0.0 && 7.4 RC.1 = 7.4.0.101
else if(vers =~ "^7\.4" && vers == "7.4.0.101") {
  fix = "7.4.0";
}

if(fix) {
  report = report_fixed_ver(installed_version:vers, fixed_version:fix, install_path:path);
  security_message(port:0, data:report);
  exit(0);
}

exit(0);

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
13 Dec 2023 00:00Current
6.5Medium risk
Vulners AI Score6.5
CVSS36.5
EPSS0.02494
powershellinformation disclosurevulnerabilityflawauthenticationwindowssecurity advisorycve-2023-36013exploitationupdateversion 7.2.17version 7.3.10version 7.4.0powershell coregithubmicrosoft security response center
13
.json
Report