9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.5 High
AI Score
Confidence
High
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
60.6%
01/09/2024
High
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, gain privileges.
Public exploits exist for this vulnerability.
Microsoft .NET Framework 3.5 AND 4.8
Microsoft .NET Framework 3.5 AND 4.7.2
Microsoft Visual Studio 2022 version 17.8
Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft Visual Studio 2022 version 17.6
Microsoft Visual Studio 2022 version 17.4
Microsoft .NET Framework 3.5
Microsoft .NET Framework 3.5 AND 4.8.1
Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)
.NET 6.0
.NET 7.0
Microsoft .NET Framework 4.8
.NET 8.0
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)
Microsoft Visual Studio 2015 Update 3
Microsoft Visual Studio 2022 version 17.2
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
CVE-2024-0057
CVE-2024-0056
CVE-2024-20672
CVE-2024-21312
CVE-2024-20656
CVE-2024-21319
DoS
CVE-2024-213196.8High
CVE-2024-00579.8Critical
CVE-2024-00568.7Critical
CVE-2024-206727.5Critical
CVE-2024-213127.5Critical
CVE-2024-206567.8Critical
5033741
5034270
5030979
5033733
5034269
5034274
5034276
5034279
5034278
5033920
5034273
5034272
5034280
5034119
5033734
5034277
5034275
5033910
support.microsoft.com/kb/5030979
support.microsoft.com/kb/5033733
support.microsoft.com/kb/5033734
support.microsoft.com/kb/5033741
support.microsoft.com/kb/5033910
support.microsoft.com/kb/5033920
support.microsoft.com/kb/5034119
support.microsoft.com/kb/5034269
support.microsoft.com/kb/5034270
support.microsoft.com/kb/5034272
support.microsoft.com/kb/5034273
support.microsoft.com/kb/5034274
support.microsoft.com/kb/5034275
support.microsoft.com/kb/5034276
support.microsoft.com/kb/5034277
support.microsoft.com/kb/5034278
support.microsoft.com/kb/5034279
support.microsoft.com/kb/5034280
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0056
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0057
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-20656
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-20672
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21312
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21319
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-0056
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-0057
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20656
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20672
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21312
msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21319
portal.msrc.microsoft.com/en-us/security-guidance
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/class/Exploit/
threats.kaspersky.com/en/product/.NET/
threats.kaspersky.com/en/product/Microsoft-.NET-Framework/
threats.kaspersky.com/en/product/Microsoft-Visual-Studio/
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.5 High
AI Score
Confidence
High
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
60.6%