PT-2017-18507 · Microsoft · Powershell+3

Published

2017-09-12

Updated

2019-10-03

CVE-2017-8746

CVSS v3.1

5.3

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Name of the Vulnerable Software and Affected Versions Windows 10 versions 1607 through 1703 Windows Server 2016

Description A security feature bypass issue exists due to how PowerShell exposes functions and processes user-supplied code. This allows attackers to affect the system.

Recommendations For Windows 10 versions 1607 through 1703, consider restricting the use of PowerShell until a patch is available. For Windows Server 2016, consider disabling the exposure of functions in PowerShell to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2017-8746

Affected Products

Powershell

Windows

Windows 10

Windows Server 2016

PT-2017-18507 · Microsoft · Powershell+3

CVE-2017-8746

Related Identifiers

Affected Products

References · 7