Lucene search

K
nvd[email protected]NVD:CVE-2023-24897
HistoryJun 14, 2023 - 3:15 p.m.

CVE-2023-24897

2023-06-1415:15:09
CWE-122
web.nvd.nist.gov
10
cve
code execution
.net
visual studio

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.9

Confidence

High

EPSS

0.002

Percentile

59.7%

.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

Affected configurations

Nvd
Node
microsoft.net_frameworkMatch4.8
AND
microsoftwindows_10_1607Match-x64
OR
microsoftwindows_10_1607Match-x86
OR
microsoftwindows_server_2008Matchr2sp1x64
OR
microsoftwindows_server_2012Match-
OR
microsoftwindows_server_2012Matchr2
OR
microsoftwindows_server_2016Match-
Node
microsoft.net_frameworkMatch4.6.2
OR
microsoft.net_frameworkMatch4.7
OR
microsoft.net_frameworkMatch4.7.1
OR
microsoft.net_frameworkMatch4.7.2
AND
microsoftwindows_server_2008Matchr2sp1x64
OR
microsoftwindows_server_2012Match-
OR
microsoftwindows_server_2012Matchr2
Node
microsoft.net_frameworkMatch4.6.2
AND
microsoftwindows_server_2008Match-sp2x64
OR
microsoftwindows_server_2008Match-sp2x86
OR
microsoftwindows_server_2012Match-
OR
microsoftwindows_server_2012Matchr2
Node
microsoft.net_frameworkMatch3.5
OR
microsoft.net_frameworkMatch4.6.2
AND
microsoftwindows_10_1507Match-x64
OR
microsoftwindows_10_1507Match-x86
Node
microsoft.net_frameworkMatch3.5
OR
microsoft.net_frameworkMatch4.8.1
AND
microsoftwindows_10_1607Match-x64
OR
microsoftwindows_10_1607Match-x86
OR
microsoftwindows_10_21h2Match-arm64
OR
microsoftwindows_10_21h2Match-x64
OR
microsoftwindows_10_21h2Match-x86
OR
microsoftwindows_10_22h2Match-arm64
OR
microsoftwindows_10_22h2Match-x64
OR
microsoftwindows_10_22h2Match-x86
OR
microsoftwindows_11_21h2Match-arm64
OR
microsoftwindows_11_21h2Match-x64
OR
microsoftwindows_11_22h2Match-arm64
OR
microsoftwindows_11_22h2Match-x64
OR
microsoftwindows_server_2022Match-
Node
microsoft.net_frameworkMatch3.5
OR
microsoft.net_frameworkMatch4.8
AND
microsoftwindows_10_1607Match-x64
OR
microsoftwindows_10_1607Match-x86
OR
microsoftwindows_10_1809Match-x64
OR
microsoftwindows_10_1809Match-x86
OR
microsoftwindows_10_21h2Match-arm64
OR
microsoftwindows_10_21h2Match-x64
OR
microsoftwindows_10_21h2Match-x86
OR
microsoftwindows_10_22h2Match-arm64
OR
microsoftwindows_10_22h2Match-x64
OR
microsoftwindows_10_22h2Match-x86
OR
microsoftwindows_11_21h2Match-arm64
OR
microsoftwindows_11_21h2Match-x64
OR
microsoftwindows_11_22h2Match-arm64
OR
microsoftwindows_11_22h2Match-x64
OR
microsoftwindows_server_2019Match-
OR
microsoftwindows_server_2022Match-
Node
microsoft.net_frameworkMatch3.5
OR
microsoft.net_frameworkMatch4.7.2
AND
microsoftwindows_10_1809Match-x64
OR
microsoftwindows_10_1809Match-x86
OR
microsoftwindows_server_2019Match-
Node
microsoft.net_frameworkMatch3.5
OR
microsoft.net_frameworkMatch4.6.2
OR
microsoft.net_frameworkMatch4.7
OR
microsoft.net_frameworkMatch4.7.1
OR
microsoft.net_frameworkMatch4.7.2
AND
microsoftwindows_10_1607Match-x64
OR
microsoftwindows_10_1607Match-x86
OR
microsoftwindows_server_2016Match-
Node
microsoft.netMatch6.0.0-
OR
microsoft.netMatch7.0.0
Node
microsoftvisual_studioMatch2015update3
OR
microsoftvisual_studioMatch2015update5
OR
microsoftvisual_studio_2017Range15.0–15.8
OR
microsoftvisual_studio_2017Range15.9–15.9.55
OR
microsoftvisual_studio_2019Range16.0–16.10
OR
microsoftvisual_studio_2019Range16.11–16.11.27
OR
microsoftvisual_studio_2022Range17.0–17.0.22
OR
microsoftvisual_studio_2022Range17.2–17.2.16
OR
microsoftvisual_studio_2022Range17.4–17.4.8
OR
microsoftvisual_studio_2022Range17.6–17.6.3
VendorProductVersionCPE
microsoft.net_framework4.8cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*
microsoftwindows_10_1607-cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*
microsoftwindows_10_1607-cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*
microsoftwindows_server_2008r2cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*
microsoftwindows_server_2012-cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
microsoftwindows_server_2012r2cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*
microsoftwindows_server_2016-cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*
microsoft.net_framework4.6.2cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*
microsoft.net_framework4.7cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*
microsoft.net_framework4.7.1cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*
Rows per page:
1-10 of 381

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.9

Confidence

High

EPSS

0.002

Percentile

59.7%