¡¾¸´ÏÖ¡¿Windows PowerShellÃüÁî×¢Èë©¶´£¨CVE-2025-54100£©
·¢²¼Ê±¼ä 2025-12-26Windows PowerShellÊÇ΢ÈíΪWindowsϵͳ¿ª·¢µÄÈÎÎñ×Ô¶¯»¯ºÍÅäÖùÜÀí¿ò¼Ü£¬°üº¬ÃüÁîÐÐshellºÍ½Å±¾ÓïÑÔ¡£²»Í¬ÓÚ´«Í³Shell´¦ÀíÎı¾Á÷£¬Ëü»ùÓÚ .NETÔËÐл·¾³£¬Ö±½Ó²Ù×÷½á¹¹»¯¶ÔÏó¡£
2025Äê12ÔÂ΢Èí·¢²¼Á˸üУ¬Åû¶ÁËPowerShellÔ¶³Ì´úÂëÖ´ÐЩ¶´£¨CVE-2025-54100£©£¬CVSSÆÀ·Ö7.8·Ö¡£
΢Èí¹Ù·½¶Ô¸Ã©¶´µÄÃèÊöÊÇ£º"Improper neutralization of special elements used in a command ('command injection') in Windows PowerShell allows an unauthorized attacker to execute code locally."
Ó°Ï췶Χ
Windows 10 Version 1607 < 10.0.20348.4529
Windows 10 Version 1809 < 10.0.17763.8146
Windows 10 Version 21H2 < 10.0.19044.6691
Windows 10 Version 22H2 < 10.0.19045.6691
Windows 11 Version 23H2 < 10.0.25398.2025
Windows 11 Version 24H2 < 10.0.26100.7462
Windows 11 Version 25H2 < 10.0.26200.7462
Windows Server 2008 SP2 < 6.0.6003.23666
Windows Server 2008 R2 < 6.1.7601.28064
Windows Server 2012 < 6.2.9200.25815
Windows Server 2012 R2 < 6.3.9600.22920
Windows Server 2016 < 10.0.14393.8688
Windows Server 2019 < 10.0.17763.8146
Windows Server 2022 < 10.0.20348.4529
Windows Server 2022 23H2 < 10.0.25398.2025
Windows Server 2025 < 10.0.26100.7462
©¶´ÔÀí
ÔÚ΢ÈíÅû¶µÄÐÅÏ¢ÖÐÏÔʾ¸Ã©¶´ÓëInvoke-WebRequestÃüÁîÓйء£Í¨¹ý΢ÈíµÄ¼¼ÊõÎĵµÁ˽⵽£¬Invoke-WebRequest cmdlet½«HTTPºÍHTTPSÇëÇó·¢Ë͵½ÍøÒ³»òWeb·þÎñ£¬Ëü½«·ÖÎöÏìÓ¦²¢½âÎöÍøÒ³ÄÚÈÝ¡£

½øÒ»²½Ñо¿Î¢ÈíµÄ¼¼ÊõÎĵµ·¢ÏÖ£¬ÔÚPowerShellµÄ5.1°æ±¾ÖУ¬Invoke-WebRequestÃüÁîĬÈÏʹÓÃInternet ExplorerµÄMSHTML£¨Trident£©ÒýÇæ½øÐÐÍêÕûµÄHTML½âÎöäÖȾ£¬Õ⽫µ¼ÖÂÍøÒ³ÖеÄJavaScript¡¢iframe¡¢ActiveX¡¢VBScriptµÈÄÚÈÝ»á±»ÕæÊµ¼ÓÔØ²¢Ö´ÐС£
¾¹ýÒ»·¬µ÷²é£¬ÎÒÃÇ·¢ÏÖ12Ô·ÝǰµÄWindows 11¡¢Server 22 ºÍ Server 25ĬÈϰ汾Öж¼¸½´øÁËPowerShell 5.1°æ±¾¡£
©¶´¸´ÏÖ

°²È«½¨Òé
¡ã Windows×Ô¶¯¸üÐÂ
¸üÐÂÖÁϵͳ¶ÔÓ¦×îа汾¡£
¡ã ÊÖ¶¯°²×°²¹¶¡
¶ÔÓÚÎÞ·¨×Ô¶¯¸üеÄϵͳ£¬¿ÉÒÔͨ¹ýÏÂÃæµÄÁ´½ÓÏÂÔØ¶ÔӦϵͳµÄ°²È«²¹¶¡£ºhttps://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-54100¡£

[1]https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-54100
mansion88Ã÷Éý»ý¼«·ÀÓùʵÑéÊÒ£¨ADLab£©
ADLab³ÉÁ¢ÓÚ1999Ä꣬ÊÇÖйú°²È«ÐÐÒµ×îÔç³ÉÁ¢µÄ¹¥·À¼¼ÊõÑо¿ÊµÑéÊÒÖ®Ò»£¬Î¢ÈíMAPP¼Æ»®ºËÐijÉÔ±£¬¡°ºÚȸ¹¥»÷¡±¸ÅÄîÊ×ÍÆÕß¡£½ØÖÁĿǰ£¬ADLabÒÑͨ¹ý CNVD/CNNVD/NVDB/CVEÀۼƷ¢²¼°²È«Â©¶´6500Óà¸ö£¬³ÖÐø±£³Ö¹ú¼ÊÍøÂ簲ȫÁìÓòÒ»Á÷Ë®×¼¡£ÊµÑéÊÒÑо¿·½Ïòº¸Ç»ù´¡°²È«Ñо¿¡¢Êý¾Ý°²È«Ñо¿¡¢5G°²È«Ñо¿¡¢AI+°²È«Ñо¿¡¢ÎÀÐǰ²È«Ñо¿¡¢ÔËÓªÉÌ»ù´¡ÉèÊ©°²È«Ñо¿¡¢Òƶ¯°²È«Ñо¿¡¢ÎïÁªÍø°²È«Ñо¿¡¢³µÁªÍø°²È«Ñо¿¡¢¹¤¿Ø°²È«Ñо¿¡¢ÐÅ´´°²È«Ñо¿¡¢Ôư²È«Ñо¿¡¢ÎÞÏß°²È«Ñо¿¡¢¸ß¼¶ÍþвÑо¿¡¢¹¥·À¶Ô¿¹¼¼ÊõÑо¿¡£Ñо¿³É¹ûÓ¦ÓÃÓÚ²úÆ·ºËÐļ¼ÊõÑо¿¡¢¹ú¼ÒÖØµã¿Æ¼¼ÏîÄ¿¹¥¹Ø¡¢×¨Òµ°²È«·þÎñµÈ¡£



¾©¹«Íø°²±¸11010802024551ºÅ