Security Features in PowerShellGet

#VU47622 Security Features in PowerShellGet

Published: 2020-10-13

Vulnerability identifier: #VU47622

Vulnerability risk: Low

CVSSv3.1:

CVE-ID: CVE-2020-16886

CWE-ID: CWE-254

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
PowerShellGet
Other software / Other software solutions

Vendor: Microsoft

Description

This vulnerability allows a local user to bypass security rescritions feature.

The vulnerability exists due to a security feature bypass issue in the PowerShellGet V2 module. A local user can bypass WDAC (Windows Defender Application Control) policy and execute arbitrary code on a policy locked-down machine.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

PowerShellGet: 2.2.5

CPE

cpe:2.3:a:microsoft:powershellget:2.2.5:*:*:*:*:*:*:*

External links
http://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16886

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

Latest bulletins with this vulnerability

Security Feature Bypass in Microsoft PowerShellGet Module WDAC