Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

The vulnerability of the Microsoft.NET Framework and.NET operating systems for Windows lies in the improper handling of symbolic links before accessing files. This allows attackers to exploit their privileges.

šŸ—“ļøĀ 05 Aug 2024Ā 00:00:00Reported byĀ FSTEC of Russia ā€” Information Security Threat DatabaseTypeĀ 
bdu_fstec
Ā bdu_fstecšŸ”—Ā bdu.fstec.rušŸ‘Ā 4Ā Views

Vulnerability in Microsoft DotNet Framework and Windows due to improper symbolic link handling before file access.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
AlpineLinux		CVE-2024-38081
9 Jul 202417:03
ā€“alpinelinux
IBM Security Bulletins		Security Bulletin: IBM Engineering Systems Design Rhapsody was affected by CVE-2024-38081
3 Jun 202508:20
ā€“ibm
Circl		CVE-2024-38081
3 May 202500:17
ā€“circl
CNNVD		Microsoft Visual Studio and Microsoft .NET Security Vulnerabilities
9 Jul 202400:00
ā€“cnnvd
CVE		CVE-2024-38081
9 Jul 202417:03
ā€“cve
Cvelist		CVE-2024-38081 .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability
9 Jul 202417:03
ā€“cvelist
EUVD		EUVD-2024-2365
3 Oct 202520:07
ā€“euvd
Github Security Blog		Microsoft Security Advisory CVE-2024-38081 | .NET Elevation of Privilege Vulnerability
9 Jul 202421:14
ā€“github
Microsoft KB		July 9, 2024-KB5039885 Cumulative Update for .NET Framework 4.8 for Windows 10, version 1607 and Windows Server 2016
9 Jul 202407:00
ā€“mskb
Microsoft KB		July 9, 2024-KB5039892 Cumulative Update for .NET Framework 3.5 and 4.8.1 for Microsoft server operating system, version 23H2
9 Jul 202400:00
ā€“mskb
Rows per page
Vulners
Node
microsoft.netRange6.0ā€“6.0.32
OR
microsoftmicrosoft_visual_studio_2022Range17.8ā€“17.8.12
OR
microsoftmicrosoft_visual_studio_2022Range17.6ā€“17.6.17
OR
microsoftmicrosoft_visual_studio_2022Range17.4ā€“17.4.21
OR
microsoftmicrosoft_.net_framework_3.5Range<4.7.2.4101.03
OR
microsoftmicrosoft_.net_framework_3.5Range<4.8.4739.04
OR
microsoftmicrosoft_.net_framework_3.5Range<3.5.4101.04
OR
microsoftmicrosoft_.net_framework_3.5Range<3.5.30729.8971
OR
microsoftmicrosoft_.net_framework_3.5Range<3.5.30729.8972
OR
microsoftmicrosoft_.net_framework_3.5Range<4.8.1.9256.03
OR
microsoftmicrosoft_.net_framework_3.5Range<4.8.9256.03
OR
microsoftmicrosoft_.net_framework_4.7.2Range<4.7.2.4101.03
OR
microsoftmicrosoft_.net_framework_4.7.2Range<4.7.4101.02
OR
microsoftmicrosoft_.net_framework_4.7.2Range<4.7.4101.01
OR
microsoftmicrosoft_.net_framework_4.8Range<4.8.4739.04
OR
microsoftmicrosoft_.net_framework_4.8Range<4.8.4739.02
OR
microsoftmicrosoft_.net_framework_4.8Range<4.8.4739.03
OR
microsoftmicrosoft_.net_framework_4.8Range<4.8.04739.02
OR
microsoftmicrosoft_.net_framework_3.5.1Range<3.5.30729.8971
OR
microsoftmicrosoft_.net_framework_4.6.2Range<4.7.4101.02
OR
microsoftmicrosoft_.net_framework_4.6.2Range<4.7.4101.01
OR
microsoftmicrosoft_.net_framework_4.7Range<4.7.4101.02
OR
microsoftmicrosoft_.net_framework_4.7Range<4.7.4101.01
OR
microsoftmicrosoft_.net_framework_4.7.1Range<4.7.4101.02
OR
microsoftmicrosoft_.net_framework_4.7.1Range<4.7.4101.01
OR
microsoftmicrosoft_.net_framework_3.0_service_pack_2Range<2.0.50727.8977
OR
microsoftmicrosoft_.net_framework_2.0_service_pack_2Range<2.0.50727.8977
OR
microsoftmicrosoft_.net_framework_4.8.1Range<4.8.1.9256.03
OR
microsoftmicrosoft_.net_framework_4.8.1Range<4.8.9256.03

Data

Build on a solid foundation withĀ Vulners data

WeĀ provide theĀ essential building blocks forĀ cybersecurity solutions withĀ comprehensive, structured, andĀ constantly updated vulnerability andĀ exploits data

Api

Power your application withĀ Vulners API

The Vulners REST API offers reliable, high-performance access toĀ vulnerabilityĀ intelligence, withĀ 99.9%Ā SLAĀ uptime andĀ CDN-backed data delivery forĀ seamlessĀ global access

App

Assess and manage vulnerabilities withĀ VulnersĀ tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
14 Oct 2025 00:00Current
7.1High risk
Vulners AI Score7.1
CVSS 26.8
CVSS 37.3
EPSS0.01292
Microsoft DotNet FrameworkWindowsSymbolic linksPrivilege escalationFile access
4