67 matches found
CVE-2026-46538
Microsoft UFO open-source framework for intelligent automation across devices and platforms. In 3.0.1-4-ge2626659, Microsoft UFO's constellation client tracks pending task responses by sessionid only and does not verify that a TASKEND message came from the device that originally received the task...
EUVD-2026-32674
Microsoft UFO open-source framework for intelligent automation across devices and platforms. In 3.0.1-4-ge2626659, Microsoft UFO uses the user-controlled taskname value directly when constructing session log paths. An authenticated client can supply path traversal sequences in taskname and cause...
EUVD-2026-32671
Microsoft UFO open-source framework for intelligent automation across devices and platforms. Microsoft UFO tagged releases up to and including v3.0.0 contain an OS command injection vulnerability in the shell action replay path. In affected releases, ShellReceiver.runshell passes a command string...
Security Updates for Microsoft .NET Framework (May 2026)
The Microsoft .NET Framework installation on the remote host is missing a security update. It is, therefore, affected by the following vulnerability: - Heap-based buffer overflow in .NET allows an unauthorized attacker to elevate privileges locally. CVE-2026-32177 Note that Nessus has not tested...
CVE-2026-35433
Heap-based buffer overflow in .NET allows an unauthorized attacker to elevate privileges locally...
Microsoft .NET 输入验证错误漏洞
Microsoft .NET is a software framework developed by Microsoft Corporation in the United States. It focuses on agile software development, rapid application development, platform independence, and network transparency. There is an input validation vulnerability in Microsoft .NET. Attackers can...
Security Updates for Microsoft .NET Framework (February 2026)
The Microsoft .NET Framework installation on the remote host is missing a security update. It is, therefore, affected by the following vulnerability: - An information disclosure vulnerability. An attacker can exploit this to disclose potentially sensitive information. CVE-2025-55248 Note that...
Microsoft .NET Framework 竞争条件问题漏洞
The Microsoft .NET Framework is a comprehensive and consistent programming model developed by Microsoft Corporation. It serves as a development platform for building applications for Windows, Windows Store, Windows Phone, Windows Server, and Microsoft Azure. This platform includes programming...
Microsoft .NET Framework 安全漏洞
Microsoft .NET Framework is a comprehensive and consistent programming model from Microsoft Corporation USA and a development platform. The platform includes the C and Visual Basic programming languages, a public language runtime library, and an extensive class library. A security vulnerability...
Microsoft .NET 安全漏洞
Microsoft .NET is a software framework developed by Microsoft Corporation in the United States, dedicated to agile software development, rapid application development, platform independence, and network transparency. Versions of Microsoft .NET prior to 8.0 8.0.22 and .9.0 9.0.11 contained securit...
Microsoft .NET Framework Information Disclosure Vulnerability (KB5066131)
This host is missing an important security update according to Microsoft KB5066131 SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...
Microsoft .NET 数据伪造问题漏洞
Microsoft .NET is a software framework from Microsoft Corporation USA dedicated to agile software development, rapid application development, platform-independence, and web transparency. A data forgery vulnerability exists in Microsoft . An attacker exploiting this vulnerability could remotely...
Microsoft .NET 安全漏洞
The Microsoft .NET Framework is Microsoft's new development platform after Windows DNA, which runs in a system virtual machine and provides new functionality and development tools for Application Programming Interfaces APIs. A remote code execution vulnerability exists in Microsoft .NET, which ca...
NuGet Client Security Feature Bypass Vulnerability
Description Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 6.0, .NET 7.0 and .NET 8.0. This advisory also provides guidance on what developers can do to update their applications to address this vulnerability. A security feature bypass...
Microsoft .NET Core安全漏洞
Microsoft .NET Core is a cross-platform, high-performance, open-source framework for building modern, cloud-enabled, Internet-connected applications from Microsoft Corporation. A security vulnerability exists in Microsoft .NET Core. The following products and versions are affected: Microsoft Visu...
Microsoft .NET Framework输入验证错误漏洞
Microsoft .NET Framework is a comprehensive and consistent programming model from Microsoft Corporation USA and a Windows Store, Windows Phone, Windows Server, and Microsoft Azure applications. The platform includes the C and Visual Basic programming languages, a public language runtime library,...
Microsoft .NET Framework Remote Code Execution Vulnerability (CNVD-2020-62333)
Microsoft .NET Framework is a comprehensive and consistent programming model from Microsoft Corporation USA and a Windows Store, Windows Phone, Windows Server, and Microsoft Azure applications. The platform includes the C and Visual Basic programming languages, a public language runtime library,...
PT-2020-3761 · Microsoft · .Net Framework
Name of the Vulnerable Software and Affected Versions: Microsoft .NET Framework affected versions not specified Description: A remote code execution issue exists due to insufficient input validation in Microsoft .NET Framework. This allows a remote attacker to execute arbitrary code by uploading ...
Microsoft .NET Framework Remote Code Execution Vulnerability (CNVD-2020-08131)
Microsoft .NET Framework is a comprehensive and consistent programming model from Microsoft Corporation USA and a Windows Store, Windows Phone, Windows Server, and Microsoft Azure applications. The platform includes the C and Visual Basic programming languages, a public language runtime library,...
Microsoft .NET Framework Remote Code Execution Vulnerability (CNVD-2020-08132)
Microsoft .NET Framework is a comprehensive and consistent programming model from Microsoft Corporation USA and a Windows Store, Windows Phone, Windows Server, and Microsoft Azure applications. The platform includes the C and Visual Basic programming languages, a public language runtime library,...