9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.2 High
AI Score
Confidence
High
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.975 High
EPSS
Percentile
99.9%
01/14/2020
Critical
Multiple vulnerabilities were found in Developer Tools. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service.
Public exploits exist for this vulnerability.
.NET Core 3.0
ASP.NET Core 3.0
ASP.NET Core 2.1
Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2
Microsoft .NET Framework 3.5.1
Microsoft .NET Framework 3.5 AND 4.7.1/4.7.2
Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2
Microsoft .NET Framework 3.5 AND 4.7.2
Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2
Microsoft .NET Framework 4.8
Microsoft .NET Framework 4.5.2
Microsoft .NET Framework 3.5 AND 4.8
.NET Core 3.1
Microsoft .NET Framework 3.5
Microsoft .NET Framework 4.6
Microsoft .NET Framework 3.0 Service Pack 2
ASP.NET Core 3.1
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
CVE-2020-0603
CVE-2020-0602
CVE-2020-0605
CVE-2020-0646
CVE-2020-0606
ACE
CVE-2020-06039.3Critical
CVE-2020-06025.0Warning
CVE-2020-06059.3Critical
CVE-2020-06069.3Critical
4535101
4534306
4534978
4534976
4532933
4534276
4532938
4532936
4534271
4534979
4532935
4535103
4535104
4535105
4534293
4534977
4535102
4556826
4556813
4556812
4556807
4556406
4556405
4556404
4556403
4556402
4556401
4556400
4556441
4552929
4552926
4552931
4556399
4552928
support.microsoft.com/kb/4532933
support.microsoft.com/kb/4532935
support.microsoft.com/kb/4532936
support.microsoft.com/kb/4532938
support.microsoft.com/kb/4534271
support.microsoft.com/kb/4534276
support.microsoft.com/kb/4534293
support.microsoft.com/kb/4534306
support.microsoft.com/kb/4534976
support.microsoft.com/kb/4534977
support.microsoft.com/kb/4534978
support.microsoft.com/kb/4534979
support.microsoft.com/kb/4535101
support.microsoft.com/kb/4535102
support.microsoft.com/kb/4535103
support.microsoft.com/kb/4535104
support.microsoft.com/kb/4535105
support.microsoft.com/kb/4552926
support.microsoft.com/kb/4552928
support.microsoft.com/kb/4552929
support.microsoft.com/kb/4552931
support.microsoft.com/kb/4556399
support.microsoft.com/kb/4556400
support.microsoft.com/kb/4556401
support.microsoft.com/kb/4556402
support.microsoft.com/kb/4556403
support.microsoft.com/kb/4556404
support.microsoft.com/kb/4556405
support.microsoft.com/kb/4556406
support.microsoft.com/kb/4556441
support.microsoft.com/kb/4556807
support.microsoft.com/kb/4556812
support.microsoft.com/kb/4556813
support.microsoft.com/kb/4556826
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0602
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0603
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0605
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0606
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2020-0602
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2020-0603
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2020-0605
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2020-0606
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2020-0646
portal.msrc.microsoft.com/en-us/security-guidance
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/class/Exploit/
threats.kaspersky.com/en/product/Microsoft-.NET-Framework/
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.2 High
AI Score
Confidence
High
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.975 High
EPSS
Percentile
99.9%