EUVD-2022-7473

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

.NET Framework has a remote code execution vulnerability that needs immediate attention and patching.

Reporter	Title	Published	Views	Family All 71
ALT Linux	Security fix for the ALT Linux 10 package dotnet-coreclr-3.1 version 3.1.32-alt1	18 Mar 202300:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 10 package dotnet-bootstrap-3.1 version 3.1.32-alt1	18 Mar 202300:00	–	altlinux
ATTACKERKB	CVE-2022-41089	13 Dec 202219:15	–	attackerkb
AlpineLinux	CVE-2022-41089	13 Dec 202200:00	–	alpinelinux
BDU FSTEC	The vulnerability of Microsoft .NET Core, .NET Framework, and .NET software platforms lies in insufficient validation of input data, allowing attackers to execute arbitrary code.	19 Dec 202200:00	–	bdu_fstec
Circl	CVE-2022-41089	22 Jul 202517:33	–	circl
CNNVD	Microsoft .NET Framework 安全漏洞	13 Dec 202200:00	–	cnnvd
CVE	CVE-2022-41089	13 Dec 202200:00	–	cve
Cvelist	CVE-2022-41089 .NET Framework Remote Code Execution Vulnerability	13 Dec 202200:00	–	cvelist
Github Security Blog	.NET Remote Code Execution Vulnerability	14 Dec 202221:42	–	github

[
  {
    "enisaIdVendor": [
      {
        "id": "b3fda0f7-dc32-3892-a30b-9b9bac0bb93c",
        "vendor": {
          "name": "Microsoft"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "0c957dbd-7b6c-3bbb-9bd5-9dcc69f8b22e",
        "product": {
          "name": "Microsoft Visual Studio 2022 version 17.0"
        },
        "product_version": "17.0.0 <17.0.17"
      },
      {
        "id": "1b770c3e-c9e9-3437-8b2f-9641775cfdb2",
        "product": {
          "name": "Microsoft .NET Framework 3.5 AND 4.7.2"
        },
        "product_version": "4.7.0 <04010.02"
      },
      {
        "id": "29980b50-a5de-3b1a-8cd0-bf6bd6b5073b",
        "product": {
          "name": "Microsoft Visual Studio 2022 version 17.4"
        },
        "product_version": "17.4.0 <17.4.3"
      },
      {
        "id": "3dd72b62-5aca-36ee-8438-dc07b9ea136e",
        "product": {
          "name": "Microsoft .NET Framework 3.5"
        },
        "product_version": "3.5.0 <30729.8953"
      },
      {
        "id": "4acea578-3040-366e-a75a-2edeea723098",
        "product": {
          "name": ".NET Core 3.1"
        },
        "product_version": "3.1 <3.1.32"
      },
      {
        "id": "50a2c8cb-3c62-3933-9183-77c7fcbf144a",
        "product": {
          "name": "Microsoft .NET Framework 2.0 Service Pack 2"
        },
        "product_version": "2.0.0 <30729.8953"
      },
      {
        "id": "586a2d68-68bc-3b44-a18d-08a0b1e8bf16",
        "product": {
          "name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2"
        },
        "product_version": "4.7.0 <04010.02"
      },
      {
        "id": "5d8c5a4f-1436-3d06-a233-d611c0836c19",
        "product": {
          "name": "Microsoft .NET Framework 4.6.2"
        },
        "product_version": "4.7.0 <04010.02"
      },
      {
        "id": "61725e84-5d58-3f34-8c53-53720a0f82eb",
        "product": {
          "name": "Microsoft .NET Framework 3.5 AND 4.8"
        },
        "product_version": "4.8.0 <04590.02"
      },
      {
        "id": "61d3ceae-94e5-3f44-afae-87f618aee62c",
        "product": {
          "name": "PowerShell 7.2"
        },
        "product_version": "7.2.0 <7.2.9"
      },
      {
        "id": "624abbfc-2115-38d5-ad6a-0a8eda9875b3",
        "product": {
          "name": "Microsoft Visual Studio 2022 version 17.2"
        },
        "product_version": "17.2.0 <17.2.11"
      },
      {
        "id": "77526899-428d-3c9a-991f-907d946afe7d",
        "product": {
          "name": "PowerShell 7.3"
        },
        "product_version": "7.3.0 <7.3.2"
      },
      {
        "id": "95b4505b-d965-393b-ae00-d4c5c4a02d25",
        "product": {
          "name": "Microsoft .NET Framework 3.0 Service Pack 2"
        },
        "product_version": "3.0.0 <30729.8953"
      },
      {
        "id": "ab2cc626-49a1-341b-83f6-e9f1691c5827",
        "product": {
          "name": "Microsoft .NET Framework 4.8"
        },
        "product_version": "4.8.0 <04590.02"
      },
      {
        "id": "abf3267f-cf68-3ed3-8482-afeb4c769f33",
        "product": {
          "name": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)"
        },
        "product_version": "16.11.0 <16.11.22"
      },
      {
        "id": "c0eb1c02-a585-359f-8702-eafaab61cb99",
        "product": {
          "name": ".NET 6.0"
        },
        "product_version": "6.0.0 <6.0.12"
      },
      {
        "id": "ca47e08b-4b19-3167-b72c-99630492fca8",
        "product": {
          "name": "Microsoft .NET Framework 3.5 AND 4.6/4.6.2"
        },
        "product_version": "10.0.0 <10.0.10240.19624"
      },
      {
        "id": "dc5614a1-4d7c-351e-b7fa-c9099e6c3e67",
        "product": {
          "name": "Microsoft .NET Framework 3.5.1"
        },
        "product_version": "3.5.0 <30729.8953"
      },
      {
        "id": "f1214594-047e-3915-bbe7-29e1ea6db6b1",
        "product": {
          "name": ".NET 7.0"
        },
        "product_version": "7.0.0 <7.0.1"
      },
      {
        "id": "f44fee1d-0928-3f63-afbb-00e9562068d4",
        "product": {
          "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
        },
        "product_version": "4.8.1 <09115.01"
      }
    ]
  }
]

Source	Link
github	www.github.com/dotnet/wpf/security/advisories/GHSA-2c7v-qcjp-4mg2
github	www.github.com/dotnet/announcements/issues/242
github	www.github.com/dotnet/wpf/commit/5f4c0f7763a06b024c8a517616e0fc0194e997a4
github	www.github.com/dotnet/wpf/commit/7b0be4d41c33ce8525d8160bf8869cac10f8a8cd
github	www.github.com/dotnet/wpf/commit/c08825a9889e6c798fe95ed5ec1f6a9f517ab5a0
github	www.github.com/dotnet/wpf
msrc	www.msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41089
portal	www.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41089

03 Oct 2025 20:07Current

8.1High risk

Vulners AI Score8.1

CVSS 3.17.8

EPSS0.04555