CVE-2026-45491

🗓️ 09 Jun 2026 17:04:44Reported by microsoftType

CVE-2026-45491 in dotnet allows local tampering due to improper link resolution before file access.

Reporter	Title	Published	Views	Family All 8
Cvelist	CVE-2026-45491 .NET Tampering Vulnerability	9 Jun 202617:04	–	cvelist
EUVD	EUVD-2026-35675	9 Jun 202617:04	–	euvd
Microsoft KB	.NET 10.0 Update - June 9, 2026	9 Jun 202614:00	–	mskb
Microsoft KB	.NET 8.0 Update - June 9, 2026	9 Jun 202614:00	–	mskb
Microsoft KB	.NET 9.0 Update - June 9, 2026	9 Jun 202614:00	–	mskb
NCSC	vulnerabilities handled in Microsoft Developer Tools	9 Jun 202618:23	–	ncsc
NVD	CVE-2026-45491	9 Jun 202617:17	–	nvd
Positive Technologies	PT-2026-47971	9 Jun 202600:00	–	ptsecurity

Vulners

CNA

Node

microsoft .net_frameworkRange10.0.0–10.0.9

Node

microsoft .net_frameworkRange8.0–8.0.28

Node

microsoft .net_frameworkRange8.0.0–8.0.28

Node

microsoft .net_frameworkRange9.0.0–9.0.17

[
  {
    "vendor": "Microsoft",
    "product": ".NET 10.0",
    "versions": [
      {
        "version": "10.0.0",
        "lessThan": "10.0.9",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": ".NET 8.0",
    "versions": [
      {
        "version": "8.0",
        "lessThan": "8.0.28",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": ".NET 8.0",
    "versions": [
      {
        "version": "8.0.0",
        "lessThan": "8.0.28",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": ".NET 9.0",
    "versions": [
      {
        "version": "9.0.0",
        "lessThan": "9.0.17",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  }
]

Source	Link
msrc	www.msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45491

09 Jun 2026 21:49Current

5.4Medium risk

Vulners AI Score5.4

CVSS 3.16.2

CWE-59