Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

.NET Core Privilege Escalation Vulnerability (KB5037338)

🗓️ 11 Apr 2024 00:00:00Reported by Copyright (C) 2024 Greenbone AGType 
openvas
 openvas🔗 plugins.openvas.org👁 19 Views

.NET Core Privilege Escalation Vulnerability (KB5037338

Show more

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Related
Refs
Code
ReporterTitlePublishedViews
Family
OSV		BIT-DOTNET-2024-21409
4 Jun 202409:39
–osv
OSV		CVE-2024-21409
9 Apr 202417:15
–osv
OSV		BIT-DOTNET-SDK-2024-21409
4 Jun 202409:39
–osv
OSV		GHSA-6QMX-42H2-J8H6 .NET Elevation of Privilege Vulnerability
17 Apr 202418:21
–osv
Veracode		Remote Code Execution
16 Apr 202409:19
–veracode
Tenable Nessus		Security Update for Microsoft .NET Core (April 2024)
10 Apr 202400:00
–nessus
Tenable Nessus		Security Updates for Microsoft .NET Framework (April 2024)
11 Apr 202400:00
–nessus
Tenable Nessus		Security Update for Microsoft .NET Core SDK (April 2024)
10 Apr 202400:00
–nessus
Tenable Nessus		Amazon Linux 2023 : aspnetcore-runtime-6.0, aspnetcore-targeting-pack-6.0, dotnet (ALAS2023-2024-597)
29 Apr 202400:00
–nessus
Tenable Nessus		Security Updates for Microsoft Visual Studio Products (April 2024)
9 Apr 202400:00
–nessus
Rows per page
# SPDX-FileCopyrightText: 2024 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

CPE = "cpe:/a:microsoft:asp.net_core";

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.832923");
  script_version("2024-04-12T15:39:03+0000");
  script_cve_id("CVE-2024-21409");
  script_tag(name:"cvss_base", value:"6.8");
  script_tag(name:"cvss_base_vector", value:"AV:L/AC:L/Au:S/C:C/I:C/A:C");
  script_tag(name:"last_modification", value:"2024-04-12 15:39:03 +0000 (Fri, 12 Apr 2024)");
  script_tag(name:"severity_vector", value:"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2024-04-09 17:15:34 +0000 (Tue, 09 Apr 2024)");
  script_tag(name:"creation_date", value:"2024-04-11 14:02:11 +0530 (Thu, 11 Apr 2024)");
  script_name(".NET Core Privilege Escalation Vulnerability (KB5037338)");

  script_tag(name:"summary", value:"This host is missing an important security
  update according to Microsoft KB5037338.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present
  on the target host.");

  script_tag(name:"insight", value:"The flaw exists due to an use-after-free
  vulnerability existing in WPF.");

  script_tag(name:"impact", value:"Successful exploitation allows an attacker
  to gain elevated privileges.");

  script_tag(name:"affected", value:".NET Core runtime prior to version 8.0.4
  and .NET Core SDK prior to version 8.0.204.");

  script_tag(name:"solution", value:"Update .NET Core runtime to version 8.0.4
  or later and update .NET Core SDK to version 8.0.204 later.");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"registry");
  script_xref(name:"URL", value:"https://github.com/dotnet/core/blob/main/release-notes/8.0/8.0.4/8.0.4.md");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2024 Greenbone AG");
  script_family("Windows");
  script_dependencies("gb_asp_dotnet_core_detect_win.nasl");
  script_mandatory_keys("ASP.NET/Core/Ver");
  exit(0);
}

include("host_details.inc");
include("version_func.inc");

if(!infos = get_app_version_and_location(cpe:CPE, exit_no_version:TRUE))
  exit(0);

coreVers = infos["version"];
path = infos["location"];

if(!coreVers || coreVers !~ "^8\.0") {
  exit(0);
}

if(!corerunVer = get_kb_item(".NET/Core/Runtime/Ver")) {
  if(!codesdkVer = get_kb_item(".NET/Core/SDK/Ver")){
    exit(0);
  }
}

if(corerunVer) {
  if(corerunVer =~ "^8\.0" && version_is_less(version:corerunVer, test_version:"8.0.4")) {
    fix = "8.0.4 or later";
  }
}

else if(codesdkVer) {
  if(codesdkVer =~ "^8\.0" && version_is_less(version:codesdkVer, test_version:"8.0.204")) {
    fix1 = "8.0.204 or later";
  }
}

if(fix) {
  report = report_fixed_ver(installed_version:"ASP .NET Core With Microsoft .NET Core runtimes " + corerunVer,
               fixed_version:"ASP .NET Core With Microsoft .NET Core runtimes version " + fix, install_path:path);
  security_message(port:0, data:report);
  exit(0);
}

else if(fix1) {
  report = report_fixed_ver(installed_version:"ASP .NET Core With Microsoft .NET Core SDK " + codesdkVer,
               fixed_version:"ASP .NET Core With Microsoft .NET Core SDK version " + fix1, install_path:path);
  security_message(port:0, data:report);
  exit(0);
}

exit(99);

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
11 Apr 2024 00:00Current
7.2High risk
Vulners AI Score7.2
CVSS37.3
EPSS0.21404
SSVC
microsoft.net coreprivilege escalationvulnerabilityupdatewpfelevated privilegessdkruntimeversionsecurity fix
19
.json
Report