CVE-2021-24111

🗓️ 25 Feb 2021 23:01:57Reported by microsoftType

cve🔗 web.nvd.nist.gov📰️ 3 Media mentions👁 153 Views

.NET Framework DoS Vulnerability CVE-2021-2411

Reporter	Title	Published	Views	Family All 39
Circl	CVE-2021-24111	26 Feb 202102:44	–	circl
CNNVD	Microsoft .NET Framework Security Vulnerabilities	9 Feb 202100:00	–	cnnvd
Cvelist	CVE-2021-24111 .NET Framework Denial of Service Vulnerability	25 Feb 202123:01	–	cvelist
Microsoft KB	February 9, 2021-KB4601050 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10, version 2004, Windows Server, version 2004, Windows 10, version 20H2, and Windows Server, version 20H2	9 Feb 202108:00	–	mskb
Microsoft KB	February 9, 2021-KB4601051 Cumulative Update for .NET Framework 4.8 for Windows 10, version 1607 and Windows Server, version 2016	9 Feb 202108:00	–	mskb
Microsoft KB	February 9, 2021-KB4601052 Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1703	1 Jan 200000:00	–	mskb
Microsoft KB	February 9, 2021-KB4601054 Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1803	9 Feb 202108:00	–	mskb
Microsoft KB	February 9, 2021-KB4601056 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10, version 1909, and Windows Server, version 1909	9 Feb 202108:00	–	mskb
Microsoft KB	February 9, 2021—KB4601318 (OS Build 14393.4225) - EXPIRED	9 Feb 202108:00	–	mskb
Microsoft KB	February 9, 2021—KB4601354 (OS Build 17134.2026) - EXPIRED	9 Feb 202108:00	–	mskb

NVD

Vulners

Node

microsoft .net_frameworkMatch4.6

AND

microsoft windows_server_2008Match-sp2

Node

microsoft .net_frameworkMatch4.6.2

microsoft .net_frameworkMatch4.7

microsoft .net_frameworkMatch4.7.1

microsoft .net_frameworkMatch4.7.2

AND

microsoft windows_10Match1607

microsoft windows_server_2016Match-

Node

microsoft .net_frameworkMatch4.6

microsoft .net_frameworkMatch4.6.1

microsoft .net_frameworkMatch4.6.2

microsoft .net_frameworkMatch4.7

microsoft .net_frameworkMatch4.7.1

microsoft .net_frameworkMatch4.7.2

AND

microsoft windows_7Match-sp1

microsoft windows_8.1Match-

microsoft windows_rt_8.1Match-

microsoft windows_server_2008Match-sp2

microsoft windows_server_2008Matchr2sp1x64

microsoft windows_server_2012Match-

microsoft windows_server_2012Matchr2

Node

microsoft .net_frameworkMatch4.7.2

AND

microsoft windows_10Match1803

microsoft windows_server_2019Match-

Node

microsoft .net_frameworkMatch4.8

AND

microsoft windows_10Match-

microsoft windows_10Match20h2

microsoft windows_10Match1607

microsoft windows_10Match1803

microsoft windows_10Match1809

microsoft windows_10Match1909

microsoft windows_10Match2004

microsoft windows_7Match-sp1

microsoft windows_8.1Match-

microsoft windows_rt_8.1Match-

microsoft windows_server_2008Match-sp2

microsoft windows_server_2008Matchr2sp1x64

microsoft windows_server_2012Match-

microsoft windows_server_2012Matchr2

microsoft windows_server_2016Match-

microsoft windows_server_2016Match20h2

microsoft windows_server_2016Match1909

microsoft windows_server_2016Match2004

microsoft windows_server_2019Match-

[
  {
    "vendor": "Microsoft",
    "product": "Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2",
    "cpes": [
      "cpe:2.3:a:microsoft:.net_framework:4.6:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Windows Server 2012",
      "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)",
      "Windows Server 2008 R2 for x64-based Systems Service Pack 1",
      "Windows 8.1 for x64-based systems",
      "Windows Server 2012 R2",
      "Windows 7 for 32-bit Systems Service Pack 1",
      "Windows 7 for x64-based Systems Service Pack 1",
      "Windows Server 2012 R2 (Server Core installation)",
      "Windows Server 2012 (Server Core installation)",
      "Windows 8.1 for 32-bit systems",
      "Windows RT 8.1"
    ],
    "versions": [
      {
        "version": "4.0.0.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft .NET Framework 4.8",
    "cpes": [
      "cpe:2.3:a:microsoft:.net:4.8:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Windows 10 Version 1809 for 32-bit Systems",
      "Windows 10 Version 1803 for 32-bit Systems",
      "Windows 10 Version 1803 for x64-based Systems",
      "Windows 10 Version 1809 for x64-based Systems",
      "Windows Server 2016 (Server Core installation)",
      "Windows 10 Version 1607 for 32-bit Systems",
      "Windows 7 for 32-bit Systems Service Pack 1",
      "Windows 8.1 for 32-bit systems",
      "Windows 10 Version 1607 for x64-based Systems",
      "Windows 7 for x64-based Systems Service Pack 1",
      "Windows Server 2008 R2 for x64-based Systems Service Pack 1",
      "Windows 8.1 for x64-based systems",
      "Windows Server 2012",
      "Windows Server 2016",
      "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)",
      "Windows RT 8.1",
      "Windows Server 2012 R2",
      "Windows Server 2012 (Server Core installation)",
      "Windows 10 Version 20H2 for 32-bit Systems",
      "Windows Server, version 2004 (Server Core installation)",
      "Windows 10 Version 2004 for x64-based Systems",
      "Windows Server, version 20H2 (Server Core Installation)",
      "Windows 10 Version 20H2 for ARM64-based Systems",
      "Windows 10 Version 2004 for ARM64-based Systems",
      "Windows 10 Version 2004 for 32-bit Systems",
      "Windows Server 2019 (Server Core installation)",
      "Windows Server 2019",
      "Windows 10 Version 1909 for x64-based Systems",
      "Windows Server, version 1909 (Server Core installation)",
      "Windows 10 Version 1909 for ARM64-based Systems",
      "Windows 10 Version 1909 for 32-bit Systems",
      "Windows Server 2012 R2 (Server Core installation)"
    ],
    "versions": [
      {
        "version": "4.8.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft .NET Framework 4.6",
    "cpes": [
      "cpe:2.3:a:microsoft:.net_framework:4.6:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Windows Server 2008 for 32-bit Systems Service Pack 2",
      "Windows Server 2008 for x64-based Systems Service Pack 2"
    ],
    "versions": [
      {
        "version": "4.0.0.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2",
    "cpes": [
      "cpe:2.3:a:microsoft:.net:4.7.2:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Windows 10 Version 1607 for 32-bit Systems",
      "Windows Server 2016 (Server Core installation)",
      "Windows 10 Version 1607 for x64-based Systems",
      "Windows Server 2016"
    ],
    "versions": [
      {
        "version": "4.7.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft .NET Framework 4.7.2",
    "cpes": [
      "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Windows 10 Version 1803 for x64-based Systems",
      "Windows Server 2019 (Server Core installation)",
      "Windows Server 2019",
      "Windows 10 Version 1803 for 32-bit Systems",
      "Windows 10 Version 1803 for ARM64-based Systems"
    ],
    "versions": [
      {
        "version": "10.0.0.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  }
]

Source	Link
portal	www.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-24111

21 Nov 2024 05:52Current

7.5High risk

Vulners AI Score7.5

CVSS 25

CVSS 3.17.5

EPSS0.24574