The issue which is documented as CVE 2021_26701, affects PowerShell Versions 7.0 & 7.1. Windows PowerShell 5.1 is not impacted by this issue. Windows PowerShell which is built on the .Net common Language Runtime (CLR), is a cross -platform task automation utility which consists of a command line shell, a scripting language and a configuration management framework.
Users are asked to update PowerShell as soon as possible since there are no work around for this vulnerability.
- Version 7.0 to 7.0.6
- Version 7.1 to 7.1.3
For more information on this PowerShell update you can follow this URL:
The Guyana National CIRT recommends that users and administrators review this alert and apply updates where necessary.
Lakshmanan, Ravie (4th July 2021). Microsoft Urges Azure Users to Update PowerShell to Patch RCE Flaw Retrieved from:
Gatlan, Sergiu (2nd July 2021). Microsoft warns of critical PowerShell 7 code execution vulnerability. Retrieved from:
https://www.bleepingcomputer.com/news/security/microsoft-warns-of- critical- powershell-7-code-execution-vulnerability/