Lucene search
Redhat.comRH:CVE-2023-33127HistoryJul 11, 2023 - 5:05 p.m.
CVE-2023-33127
2023-07-1117:05:55
redhat.com
access.redhat.com
14
dotnet
windows
vulnerability
remote attacker
eop
code execution
diagnostic port
0.001 Low
EPSS
Percentile
48.5%
A vulnerability was found in dotNET applications where the Windows dotNET runtime exposes an IPC diagnostic endpoint named pipe for collecting diagnostic information and debugging. A remote attacker can exploit DCOM applications that expose a diagnostic port to achieve cross-session/cross-user elevation of privilege (EoP) and code execution by taking control of the diagnostic port.
Related
veracode
veracode
Remote Code Execution (RCE)
2023-07-13 06:07:18
osv
osv
CVE-2023-33127
2023-07-11 18:15:14
Microsoft Security Advisory CVE-2023-33127: .NET Remote Code Execution Vulnerability
2023-07-11 22:45:28
BIT-dotnet-sdk-2023-33127
2024-03-06 10:55:31
alpinelinux
alpinelinux
CVE-2023-33127
2023-07-11 18:15:14
ubuntucve
ubuntucve
CVE-2023-33127
2023-07-11 00:00:00
cvelist
cvelist
CVE-2023-33127 .NET and Visual Studio Elevation of Privilege Vulnerability
2023-07-11 17:03:05
prion
prion
Privilege escalation
2023-07-11 18:15:00
mscve
mscve
.NET and Visual Studio Elevation of Privilege Vulnerability
2023-07-11 07:00:00
github
github
cve
cve
CVE-2023-33127
2023-07-11 18:15:14
nessus
nessus
Security Update for .NET Core SDK (July 2023)
2023-07-14 00:00:00
Security Update for Microsoft .NET Core (July 2023)
2023-07-12 00:00:00
Security Updates for Microsoft ASP.NET Core (July 2023)
2023-07-12 00:00:00
mskb
mskb
.NET 7.0 Update - July 11, 2023 (KB5028706)
2023-07-11 07:00:00
.NET 6.0 Update - July 11, 2023 (KB5028705)
2023-07-11 07:00:00
openvas
openvas
.NET Core Multiple Vulnerabilities (KB5028705, KB5028706) - Windows
2023-07-12 00:00:00
kaspersky
kaspersky
KLA50771 Multiple vulnerabilities in Microsoft Developer Tools
2023-07-11 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - July 2023
2023-07-11 21:50:34