CVE-2025-26682

🗓️ 08 Apr 2025 17:24:22Reported by microsoftType

CVE-2025-26682 in ASP.NET Core causes denial of service vulnerabilities in Visual Studio.

Reporter	Title	Published	Views	Family All 42
AlpineLinux	CVE-2025-26682	8 Apr 202517:24	–	alpinelinux
Circl	CVE-2025-26682	8 Apr 202516:14	–	circl
CNNVD	Microsoft ASP.NET Core 安全漏洞	8 Apr 202500:00	–	cnnvd
Cvelist	CVE-2025-26682 ASP.NET Core and Visual Studio Denial of Service Vulnerability	8 Apr 202517:24	–	cvelist
Kaspersky	KLA82405 Multiple vulnerabilities in Microsoft Developer Tools	8 Apr 202500:00	–	kaspersky
Microsoft CVE	ASP.NET Core and Visual Studio Denial of Service Vulnerability	8 Apr 202507:00	–	mscve
NCSC	Vulnerabilities fixed in Microsoft Developer Tools	8 Apr 202518:54	–	ncsc
NVD	CVE-2025-26682	8 Apr 202518:15	–	nvd
OpenVAS	Ubuntu: Security Advisory (USN-7427-1)	9 Apr 202500:00	–	openvas
OSV	BELL-CVE-2025-26682	9 Apr 202505:58	–	osv

NVD

Vulners

CNA

Node

microsoft asp.net_coreRange8.0.0–8.0.15

microsoft asp.net_coreRange9.0.0–9.0.4

microsoft visual_studio_2022Range17.8.0–17.8.20

microsoft visual_studio_2022Range17.10.0–17.10.13

microsoft visual_studio_2022Range17.12.0–17.12.7

microsoft visual_studio_2022Range17.13.0–17.13.6

[
  {
    "vendor": "Microsoft",
    "product": "ASP.NET Core 8.0",
    "versions": [
      {
        "version": "8.0",
        "lessThan": "8.0.15",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "ASP.NET Core 9.0",
    "versions": [
      {
        "version": "9.0",
        "lessThan": "9.0.4",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Visual Studio 2022 version 17.10",
    "versions": [
      {
        "version": "17.10.0",
        "lessThan": "17.10.13",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Visual Studio 2022 version 17.12",
    "versions": [
      {
        "version": "17.12.0",
        "lessThan": "17.12.7",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Visual Studio 2022 version 17.13",
    "versions": [
      {
        "version": "17.13.0",
        "lessThan": "17.13.6",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Visual Studio 2022 version 17.8",
    "versions": [
      {
        "version": "17.8.0",
        "lessThan": "17.8.20",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  }
]

Source	Link
msrc	www.msrc.microsoft.com/update-guide/vulnerability/CVE-2025-26682

13 Feb 2026 19:33Current

7High risk

Vulners AI Score7

CVSS 3.17.5

EPSS0.09556

SSVC

CWE-770

cve-2025-26682 asp.net core vulnerability denial of service visual studio