Lucene search
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.SMB_NT_MS23_NOV_OFFICE_SHAREPOINT_2019.NASLHistoryNov 14, 2023 - 12:00 a.m.
Security Updates for Microsoft SharePoint Server 2019 (November 2023)
2023-11-1400:00:00
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
5
microsoft
sharepoint
server
2019
security
update
remote code execution
vulnerability
authentication
arbitrary commands
6.8 Medium
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
7.5 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
26.1%
The Microsoft SharePoint Server 2019 installation on the remote host is missing security updates. It is, therefore, affected by the following vulnerability:
- A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands.
#%NASL_MIN_LEVEL 70300
##
# (C) Tenable, Inc.
##
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(185594);
script_version("1.5");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/06/06");
script_cve_id("CVE-2023-38177");
script_xref(name:"MSKB", value:"5002526");
script_xref(name:"MSFT", value:"MS23-5002526");
script_xref(name:"IAVA", value:"2023-A-0622-S");
script_name(english:"Security Updates for Microsoft SharePoint Server 2019 (November 2023)");
script_set_attribute(attribute:"synopsis", value:
"The Microsoft SharePoint Server 2019 installation on the remote host is missing a security update");
script_set_attribute(attribute:"description", value:
"The Microsoft SharePoint Server 2019 installation on the remote host is missing security updates.
It is, therefore, affected by the following vulnerability:
- A remote code execution vulnerability. An attacker can exploit this to bypass
authentication and execute unauthorized arbitrary commands.");
script_set_attribute(attribute:"see_also", value:"https://support.microsoft.com/en-us/help/5002526");
script_set_attribute(attribute:"solution", value:
"Microsoft has released KB5002526 to address this issue.");
script_set_cvss_base_vector("CVSS2#AV:A/AC:L/Au:M/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-38177");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2023/09/12");
script_set_attribute(attribute:"patch_publication_date", value:"2023/09/12");
script_set_attribute(attribute:"plugin_publication_date", value:"2023/11/14");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:microsoft:sharepoint_server:2019");
script_set_attribute(attribute:"stig_severity", value:"I");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Windows : Microsoft Bulletins");
script_copyright(english:"This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("microsoft_sharepoint_installed.nbin", "smb_hotfixes.nasl", "ms_bulletin_checks_possible.nasl");
script_require_keys("SMB/MS_Bulletin_Checks/Possible");
script_require_ports(139, 445, "Host/patch_management_checks");
exit(0);
}
include('vcf_extras_microsoft.inc');
var app_info = vcf::microsoft::sharepoint::get_app_info();
var kb_checks =
[
{
'product' : '2019',
'edition' : 'Server',
'kb' : '5002526',
'path' : app_info.path,
'version' : '16.0.10404.20003',
'append' : 'bin',
'file' : 'ascalc.dll',
'product_name' : 'Microsoft SharePoint Enterprise Server 2019'
}
];
vcf::microsoft::sharepoint::check_version_and_report
(
app_info:app_info,
bulletin:'MS23-11',
constraints:kb_checks,
severity:SECURITY_HOLE
);
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | sharepoint_server | 2019 | cpe:/a:microsoft:sharepoint_server:2019 |
Related
nessus
nessus
mskb
mskb
mscve
mscve
Microsoft SharePoint Server Remote Code Execution Vulnerability
2023-11-14 08:00:00
nvd
nvd
CVE-2023-38177
2023-11-14 18:15:51
cve
cve
CVE-2023-38177
2023-11-14 18:15:51
prion
prion
Remote code execution
2023-11-14 18:15:00
cvelist
cvelist
kaspersky
kaspersky
KLA61981 Multiple vulnerabilities in Microsoft Office
2023-11-14 00:00:00
qualysblog
qualysblog
Microsoft and Adobe Patch Tuesday, November 2023 Security Update Review
2023-11-14 20:29:03
rapid7blog
rapid7blog
Patch Tuesday - November 2023
2023-11-14 21:27:09
6.8 Medium
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
7.5 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
26.1%
Related for SMB_NT_MS23_NOV_OFFICE_SHAREPOINT_2019.NASL