1163 matches found
CVE-2026-50650
Improper control of generation of code 'code injection' in .NET Framework allows an unauthorized attacker to elevate privileges locally...
CVE-2026-50648
CVE-2026-50648 describes a denial-of-service in .NET Framework caused by allocation of resources without limits or throttling. The CVE is network-exploitable (attack vector: network, privileges: none, user interaction: none) with an attacker able to exhaust resources and disrupt service. The NVD ...
CVE-2026-50646
CVE-2026-50646 affects the .NET Framework. The vulnerability is a protection mechanism failure that could allow an unauthenticated local attacker to execute code on the affected system (attack vector: LOCAL; privileges required: NONE; user interaction required). The CVSS 3.1 base score is 7.8 (HI...
CVE-2026-50527
CVE-2026-50527 is a stack-based buffer overflow in the .NET Framework that can allow an unauthenticated, network-based attacker to cause denial of service. The vulnerability affects the .NET Framework components handling network input; exploitation leads to an out-of-bounds write with service dis...
CVE-2026-50525
CVE-2026-50525 is a .NET Denial of Service vulnerability described as allocation of resources without limits/throttling that can allow an unauthenticated attacker to cause network-based service disruption. Connected sources confirm impact on Microsoft components including .NET and related Develop...
CVE-2026-57108
CVE-2026-57108 is a .NET Core vulnerability described as a type confusion issue that enables a network-based Denial of Service. The available documents identify it as affecting .NET Core components, with exploitation leading to service disruption over the network. The CVSS vector in the initial e...
2026-07 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 22H2 for x64 (KB5102203)
2026-07 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 22H2 for x64 KB5102203...
2026-07 Security and Quality Rollup for .NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 for x64 (KB5102204)
2026-07 Security and Quality Rollup for .NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 for x64 KB5102204...
2026-07 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 21H2 for ARM64 (KB5102202)
2026-07 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 21H2 for ARM64 KB5102202...
2026-07 Cumulative Update for .NET Framework 4.8 for Windows Server 2016 for x64 (KB5101007)
2026-07 Cumulative Update for .NET Framework 4.8 for Windows Server 2016 for x64 KB5101007...
May 12, 2026-KB5087065 Cumulative Update for .NET Framework 4.8 for Windows 10, version 1607 and Windows Server 2016
None None...
May 12, 2026-Security and Quality Rollup for .NET Framework 3.5 for Windows Server 2012 (KB5087048)
None None...
May 12, 2026-KB5087059 Cumulative Update for .NET Framework 3.5 and 4.8.1 for Windows Server 2022
None None...
May 12, 2026-Security and Quality Rollup for .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Server 2012 (KB5087062)
None None...
May 12, 2026-KB5087061 Cumulative Update for .NET Framework 3.5 and 4.7.2 for Windows 10, version 1809 and Windows Server 2019
None None...
May 12, 2026-KB5087058 Cumulative Update for .NET Framework 3.5 and 4.8.1 for Windows 11, version 23H2
None None...
May 12, 2026-KB5087077 Cumulative Update for .NET Framework 3.5 for Windows 11, version 26H1 (build 28000) and later
None None...
PT-2026-53036
Name of the Vulnerable Software and Affected Versions HCL Traveler for Microsoft Outlook HTMO affected versions not specified Description The application is susceptible to security weaknesses because it relies on .NET Framework 4.5, which has reached end-of-life. As this framework no longer...
RHSA-2026:28007 Red Hat Security Advisory: .NET 8.0 security update
Bulletin has no description...
dotnet: .NET: Local file tampering via link following vulnerability
A flaw was found in .NET's System.Formats.Tar library. When extracting a specially crafted TAR archive containing symbolic links, the TarFile.ExtractToDirectory method may incorrectly follow those links and write files outside the intended extraction directory. An attacker could exploit this issu...