Lucene search

Microsoft .NET Framework 3.5 AND 4.7.2 Security Vulnerabilities

cve

CVE-2024-21409

...

7.1AI Score

0.0004EPSS

2024-04-09 05:00 PM

cve

CVE-2024-29059

...

8.4AI Score

0.013EPSS

2024-03-22 11:09 PM

181

cve

CVE-2024-21312

...

8.3AI Score

0.002EPSS

2024-01-09 05:57 PM

cve

CVE-2024-0057

...

9.4AI Score

0.001EPSS

2024-01-09 05:56 PM

143

cve

CVE-2024-0056

...

9.2AI Score

0.002EPSS

2024-01-09 05:56 PM

159

cve

CVE-2023-36049

.NET, .NET Framework, and Visual Studio Elevation of Privilege...

9.8CVSS

7AI Score

0.001EPSS

2023-11-14 09:15 PM

119

cve

CVE-2023-36560

ASP.NET Security Feature Bypass...

8.8CVSS

7.4AI Score

0.0005EPSS

2023-11-14 06:15 PM

130

cve

CVE-2023-36796

Visual Studio Remote Code Execution...

7.8CVSS

7.7AI Score

0.001EPSS

2023-09-12 05:15 PM

420

cve

CVE-2023-36792

Visual Studio Remote Code Execution...

7.8CVSS

7.7AI Score

0.001EPSS

2023-09-12 05:15 PM

423

cve

CVE-2023-36793

Visual Studio Remote Code Execution...

7.8CVSS

7.7AI Score

0.001EPSS

2023-09-12 05:15 PM

427

cve

CVE-2023-36794

Visual Studio Remote Code Execution...

7.8CVSS

7.7AI Score

0.001EPSS

2023-09-12 05:15 PM

422

cve

CVE-2023-36788

.NET Framework Remote Code Execution...

7.8CVSS

7.8AI Score

0.001EPSS

2023-09-12 05:15 PM

392

cve

CVE-2023-36873

.NET Framework Spoofing...

5.9CVSS

5.8AI Score

0.001EPSS

2023-08-08 07:15 PM

cve

CVE-2023-36899

ASP.NET Elevation of Privilege...

8.8CVSS

5.8AI Score

0.001EPSS

2023-08-08 07:15 PM

113

cve

CVE-2023-29326

.NET Framework Remote Code Execution...

7.8CVSS

7.8AI Score

0.001EPSS

2023-06-14 03:15 PM

cve

CVE-2023-24936

.NET, .NET Framework, and Visual Studio Elevation of Privilege...

7.5CVSS

7.5AI Score

0.001EPSS

2023-06-14 03:15 PM

cve

CVE-2023-24897

.NET, .NET Framework, and Visual Studio Remote Code Execution...

7.8CVSS

7.8AI Score

0.002EPSS

2023-06-14 03:15 PM

104

cve

CVE-2023-32030

.NET and Visual Studio Denial of Service...

7.5CVSS

7.3AI Score

0.001EPSS

2023-06-14 03:15 PM

cve

CVE-2023-29331

.NET, .NET Framework, and Visual Studio Denial of Service...

7.5CVSS

7.4AI Score

0.001EPSS

2023-06-14 03:15 PM

cve

CVE-2023-24895

.NET, .NET Framework, and Visual Studio Remote Code Execution...

7.8CVSS

7.8AI Score

0.001EPSS

2023-06-14 03:15 PM

cve

CVE-2023-21808

.NET and Visual Studio Remote Code Execution...

7.8CVSS

7.7AI Score

0.001EPSS

2023-02-14 09:15 PM

145

cve

CVE-2023-21722

.NET Framework Denial of Service...

5CVSS

6.9AI Score

0.0004EPSS

2023-02-14 08:15 PM

cve

CVE-2022-41089

.NET Framework Remote Code Execution...

7.8CVSS

8.7AI Score

0.001EPSS

2022-12-13 07:15 PM

131

cve

CVE-2022-41064

.NET Framework Information Disclosure...

5.8CVSS

5.6AI Score

0.0004EPSS

2022-11-09 10:15 PM

cve

CVE-2022-26929

.NET Framework Remote Code Execution...

7.8CVSS

7.8AI Score

0.002EPSS

2022-09-13 07:15 PM

cve

CVE-2022-30130

.NET Framework Denial of Service...

3.3CVSS

4AI Score

0.002EPSS

2022-05-10 09:15 PM

156

cve

CVE-2022-26832

.NET Framework Denial of Service...

7.5CVSS

7.3AI Score

0.001EPSS

2022-04-15 07:15 PM

cve

CVE-2022-21911

.NET Framework Denial of Service...

7.5CVSS

7.3AI Score

0.001EPSS

2022-01-11 09:15 PM

108

cve

CVE-2020-16937

An information disclosure vulnerability exists when the .NET Framework improperly handles objects in memory. An attacker who successfully exploited the vulnerability could disclose contents of an affected system's memory. To exploit the vulnerability, an authenticated attacker would need to run a.....

4.7CVSS

5.7AI Score

0.0004EPSS

2020-10-16 11:15 PM

153

cve

CVE-2020-1046

A remote code execution vulnerability exists when Microsoft .NET Framework processes input. An attacker who successfully exploited this vulnerability could take control of an affected system. To exploit the vulnerability, an attacker would need to be able to upload a specially crafted file to a...

7.8CVSS

7.8AI Score

0.015EPSS

2020-08-17 07:15 PM

133

cve

CVE-2020-1476

An elevation of privilege vulnerability exists when ASP.NET or .NET web applications running on IIS improperly allow access to cached files. An attacker who successfully exploited this vulnerability could gain access to restricted files. To exploit this vulnerability, an attacker would need to...

5.5CVSS

6.2AI Score

0.0004EPSS

2020-08-17 07:15 PM

147

cve

CVE-2020-1147

A remote code execution vulnerability exists in .NET Framework, Microsoft SharePoint, and Visual Studio when the software fails to check the source markup of XML file input, aka '.NET Framework, SharePoint Server, and Visual Studio Remote Code Execution...

7.8CVSS

8AI Score

0.841EPSS

2020-07-14 11:15 PM

1137

In Wild

cve

CVE-2020-1108

A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests, aka '.NET Core & .NET Framework Denial of Service...

7.5CVSS

7.3AI Score

0.001EPSS

2020-05-21 11:15 PM

177

cve

CVE-2020-0606

A remote code execution vulnerability exists in .NET software when the software fails to check the source markup of a file.An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user, aka '.NET Framework Remote Code Execution Vulnerability'.....

8.8CVSS

8.8AI Score

0.037EPSS

2020-01-14 11:15 PM

158

cve

CVE-2020-0605

8.8CVSS

8.8AI Score

0.037EPSS

2020-01-14 11:15 PM

227

cve

CVE-2020-0646

A remote code execution vulnerability exists when the Microsoft .NET Framework fails to validate input properly, aka '.NET Framework Remote Code Execution Injection...

9.8CVSS

9.7AI Score

0.975EPSS

2020-01-14 11:15 PM

1235

In Wild

cve

CVE-2019-1142

An elevation of privilege vulnerability exists when the .NET Framework common language runtime (CLR) allows file creation in arbitrary locations, aka '.NET Framework Elevation of Privilege...

5.5CVSS

5.7AI Score

0.0004EPSS

2019-09-11 10:15 PM

132

cve

CVE-2019-1083

A denial of service vulnerability exists when Microsoft Common Object Runtime Library improperly handles web requests, aka '.NET Denial of Service...

7.5CVSS

7.6AI Score

0.001EPSS

2019-07-15 07:15 PM

164

cve

CVE-2019-1113

8.8CVSS

8.7AI Score

0.044EPSS

2019-07-15 07:15 PM

149

cve

CVE-2019-1006

An authentication bypass vulnerability exists in Windows Communication Foundation (WCF) and Windows Identity Foundation (WIF), allowing signing of SAML tokens with arbitrary symmetric keys, aka 'WCF/WIF SAML Token Authentication Bypass...

7.5CVSS

8.1AI Score

0.002EPSS

2019-07-15 07:15 PM

205

cve

CVE-2019-0981

A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and .Net Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0820,...

7.5CVSS

7.3AI Score

0.002EPSS

2019-05-16 07:29 PM

126

cve

CVE-2019-0864

A denial of service vulnerability exists when .NET Framework improperly handles objects in heap memory, aka '.NET Framework Denial of Service...

5.5CVSS

6AI Score

0.0004EPSS

2019-05-16 07:29 PM

cve

CVE-2019-0820

A denial of service vulnerability exists when .NET Framework and .NET Core improperly process RegEx strings, aka '.NET Framework and .NET Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0980,...

7.5CVSS

7.3AI Score

0.002EPSS

2019-05-16 07:29 PM

151

cve

CVE-2019-0980

7.5CVSS

7.3AI Score

0.002EPSS

2019-05-16 07:29 PM

141

cve

CVE-2019-0613

A remote code execution vulnerability exists in .NET Framework and Visual Studio software when the software fails to check the source markup of a file.An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user, aka '.NET Framework and...

8.8CVSS

8.8AI Score

0.028EPSS

2019-03-05 11:29 PM

cve

CVE-2019-0657

A vulnerability exists in certain .Net Framework API's and Visual Studio in the way they parse URL's, aka '.NET Framework and Visual Studio Spoofing...

5.9CVSS

5.7AI Score

0.003EPSS

2019-03-05 11:29 PM

103

cve

CVE-2019-0545

An information disclosure vulnerability exists in .NET Framework and .NET Core which allows bypassing Cross-origin Resource Sharing (CORS) configurations, aka ".NET Framework Information Disclosure Vulnerability." This affects Microsoft .NET Framework 2.0, Microsoft .NET Framework 3.0, Microsoft...

7.5CVSS

6.8AI Score

0.018EPSS

2019-01-08 09:29 PM

100

cve

CVE-2018-8517

A denial of service vulnerability exists when .NET Framework improperly handles special web requests, aka ".NET Framework Denial Of Service Vulnerability." This affects Microsoft .NET Framework 4.6, Microsoft .NET Framework 3.5, Microsoft .NET Framework 4.7/4.7.1/4.7.2, Microsoft .NET Framework...

7.5CVSS

8.2AI Score

0.001EPSS

2018-12-12 12:29 AM

cve

CVE-2018-8540

A remote code execution vulnerability exists when the Microsoft .NET Framework fails to validate input properly, aka ".NET Framework Remote Code Injection Vulnerability." This affects Microsoft .NET Framework 4.6, Microsoft .NET Framework 3.5, Microsoft .NET Framework 4.7/4.7.1/4.7.2, Microsoft...

9.8CVSS

9.6AI Score

0.01EPSS

2018-12-12 12:29 AM

105

cve

CVE-2018-8421

A remote code execution vulnerability exists when Microsoft .NET Framework processes untrusted input, aka ".NET Framework Remote Code Execution Vulnerability." This affects Microsoft .NET Framework 4.6, Microsoft .NET Framework 3.5, Microsoft .NET Framework 4.7/4.7.1/4.7.2, Microsoft .NET...

9.8CVSS

9.6AI Score

0.467EPSS

2018-09-13 12:29 AM

101

Total number of security vulnerabilities54