Lucene search
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.SMB_NT_MS23_SEP_DOTNET_CORE.NASLHistorySep 12, 2023 - 12:00 a.m.
Security Update for Microsoft .NET Core (September 2023)
2023-09-1200:00:00
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
101
microsoft
.net core
security update
vulnerability
remote code execution
visual studio
september 2023
cve-2023-36792
cve-2023-36793
cve-2023-36794
cve-2023-36796
nessus
update
vendor advisory
windows
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
45.2%
The version of tested product installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 2023_Sep_12 advisory.
- Visual Studio Remote Code Execution Vulnerability (CVE-2023-36792, CVE-2023-36793, CVE-2023-36794, CVE-2023-36796)
Note that Nessus has not tested for these issues but has instead relied only on the applicationâs self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
include('compat.inc');
if (description)
{
script_id(181277);
script_version("1.5");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/10/12");
script_cve_id(
"CVE-2023-36792",
"CVE-2023-36793",
"CVE-2023-36794",
"CVE-2023-36796"
);
script_xref(name:"IAVA", value:"2023-A-0475-S");
script_name(english:"Security Update for Microsoft .NET Core (September 2023)");
script_set_attribute(attribute:"synopsis", value:
"The remote Windows host is affected by a .NET Core vulnerability");
script_set_attribute(attribute:"description", value:
"The version of tested product installed on the remote host is prior to tested version. It is, therefore, affected by
multiple vulnerabilities as referenced in the 2023_Sep_12 advisory.
- Visual Studio Remote Code Execution Vulnerability (CVE-2023-36792, CVE-2023-36793, CVE-2023-36794,
CVE-2023-36796)
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://dotnet.microsoft.com/download/dotnet/6.0");
script_set_attribute(attribute:"see_also", value:"https://dotnet.microsoft.com/download/dotnet/7.0");
script_set_attribute(attribute:"see_also", value:"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36792");
script_set_attribute(attribute:"see_also", value:"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36793");
script_set_attribute(attribute:"see_also", value:"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36794");
script_set_attribute(attribute:"see_also", value:"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36796");
script_set_attribute(attribute:"see_also", value:"https://support.microsoft.com/help/5030559");
script_set_attribute(attribute:"see_also", value:"https://support.microsoft.com/help/5030560");
# https://github.com/dotnet/core/blob/master/release-notes/6.0.0/6.0.22/6.0.22.md
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?f56a7a48");
# https://github.com/dotnet/core/blob/master/release-notes/7.0.0/7.0.11/7.0.11.md
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?5bff6552");
script_set_attribute(attribute:"solution", value:
"Update .NET Core, remove vulnerable packages and refer to vendor advisory.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-36796");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2023/09/12");
script_set_attribute(attribute:"patch_publication_date", value:"2023/09/12");
script_set_attribute(attribute:"plugin_publication_date", value:"2023/09/12");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:microsoft:.net_core");
script_set_attribute(attribute:"generated_plugin", value:"former");
script_set_attribute(attribute:"stig_severity", value:"I");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Windows");
script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("microsoft_dotnet_core_win.nbin");
script_require_keys("installed_sw/.NET Core Windows");
exit(0);
}
include('vcf.inc');
get_kb_item_or_exit('SMB/Registry/Enumerated');
var app_info = vcf::get_app_info(app:'.NET Core Windows', win_local:TRUE);
var constraints = [
{ 'min_version' : '6.0.0', 'fixed_version' : '6.0.22' },
{ 'min_version' : '7.0.0', 'fixed_version' : '7.0.11' }
];
vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_HOLE);
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36792
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36793
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36794
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36796
www.nessus.org/u?5bff6552
www.nessus.org/u?f56a7a48
dotnet.microsoft.com/download/dotnet/6.0
dotnet.microsoft.com/download/dotnet/7.0
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36792
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36793
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36794
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36796
support.microsoft.com/help/5030559
support.microsoft.com/help/5030560
Related
mskb
mskb
Description of the security update for the remote code execution vulnerability in Microsoft Visual Studio 2013 Update 5: October 10, 2023 (KB5029365)
2023-09-12 07:00:00
osv
osv
github
github
openvas
openvas
Microsoft Visual Studio Multiple Vulnerabilities-04 (Sep 2023)
2023-09-14 00:00:00
Microsoft .NET Framework Multiple Vulnerabilities (KB5030181)
2023-09-13 00:00:00
Microsoft .NET Framework Multiple Vulnerabilities (KB5030180)
2023-09-14 00:00:00
nessus
nessus
Security Update for .NET Core SDK (September 2023)
2023-09-14 00:00:00
Security Updates for Microsoft .NET Framework (September 2023)
2023-09-13 00:00:00
talosblog
talosblog
kaspersky
kaspersky
KLA60561 Multiple vulnerabilities in Microsoft Developer Tools
2023-09-12 00:00:00
vulnrichment
vulnrichment
CVE-2023-36796 Visual Studio Remote Code Execution Vulnerability
2023-09-12 16:58:39
CVE-2023-36793 Visual Studio Remote Code Execution Vulnerability
2023-09-12 16:58:40
CVE-2023-36792 Visual Studio Remote Code Execution Vulnerability
2023-09-12 16:58:40
redhatcve
redhatcve
alpinelinux
alpinelinux
cvelist
cvelist
CVE-2023-36796 Visual Studio Remote Code Execution Vulnerability
2023-09-12 16:58:39
CVE-2023-36793 Visual Studio Remote Code Execution Vulnerability
2023-09-12 16:58:40
CVE-2023-36792 Visual Studio Remote Code Execution Vulnerability
2023-09-12 16:58:40
nvd
nvd
ubuntucve
ubuntucve
mscve
mscve
Visual Studio Remote Code Execution Vulnerability
2023-09-12 07:00:00
Visual Studio Remote Code Execution Vulnerability
2023-09-12 07:00:00
Visual Studio Remote Code Execution Vulnerability
2023-09-12 07:00:00
veracode
veracode
Remote Code Execution
2023-09-15 07:07:32
Remote Code Execution (RCE)
2023-10-02 19:25:39
Remote Code Execution (RCE)
2023-10-02 19:25:45
cve
cve
prion
prion
Remote code execution
2023-09-12 17:15:00
Remote code execution
2023-09-12 17:15:00
Remote code execution
2023-09-12 17:15:00
qualysblog
qualysblog
Microsoft and Adobe Patch Tuesday, September 2023 Security Update Review
2023-09-12 19:20:31
ics
ics
Siemens ST7 ScadaConnect
2024-06-13 12:00:00
Siemens Telecontrol Server Basic
2024-04-11 12:00:00
rapid7blog
rapid7blog
Patch Tuesday - September 2023
2023-09-12 22:55:55
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
45.2%
Related for SMB_NT_MS23_SEP_DOTNET_CORE.NASL