PRP: Request CVE-2020-0796 Windows SMBv3 Client/Server Remote Code Execution Vulnerability

[hh-hunter]

Hello,
I would like to start the implementation for a plugin that detects CVE-2020-0796,The vulnerability should be relatively new and have already been patched.

• https://msrc.microsoft.com/update-guide/zh-cn/vulnerability/CVE-2020-0796
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0796
• https://packetstormsecurity.com/files/156732/Microsoft-Windows-SMB-3.1.1-Remote-Code-Execution.html

The vulnerability has been assigned a CVE ID (CVSS score >= 7.0), and the vulnerability has a HIGH or CRITICAL severity level: CVSS score: 10.0 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)

The radius of impact of the vulnerability is very large, and the scope of impact is as follows:
Windows 10 Version 1903 for 32-bit Systems
Windows 10 Version 1903 for x64-based Systems
Windows 10 Version 1903 for ARM64-based Systems
Windows Server, Version 1903 (Server Core installation)
Windows 10 Version 1909 for 32-bit Systems
Windows 10 Version 1909 for x64-based Systems
Windows 10 Version 1909 for ARM64-based Systems
Windows Server, Version 1909 (Server Core installation)
This vulnerability can be exploited remotely without authentication and user interaction.
Since the vulnerability is a windows environment, docker cannot be built, but I can provide ISO images of related vulnerability versions and repaired versions, or very large virtual machine images.

Please let me know if this is within the scope of starting development.