ROS-20260608-73-0016

The vulnerability of the Microsoft .NET software platform, Microsoft .NET Framework, and the source code editor Visual Studio is related to the execution of a loop with an unavailable exit condition. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

CVE-2026-46538

Microsoft UFO open-source framework for intelligent automation across devices and platforms. In 3.0.1-4-ge2626659, Microsoft UFO's constellation client tracks pending task responses by sessionid only and does not verify that a TASKEND message came from the device that originally received the task...

EUVD-2026-32674

Microsoft UFO open-source framework for intelligent automation across devices and platforms. In 3.0.1-4-ge2626659, Microsoft UFO uses the user-controlled taskname value directly when constructing session log paths. An authenticated client can supply path traversal sequences in taskname and cause...

EUVD-2026-32671

Microsoft UFO open-source framework for intelligent automation across devices and platforms. Microsoft UFO tagged releases up to and including v3.0.0 contain an OS command injection vulnerability in the shell action replay path. In affected releases, ShellReceiver.runshell passes a command string...

Security Updates for Microsoft .NET Framework (May 2026)

The Microsoft .NET Framework installation on the remote host is missing a security update. It is, therefore, affected by the following vulnerability: - Heap-based buffer overflow in .NET allows an unauthorized attacker to elevate privileges locally. CVE-2026-32177 Note that Nessus has not tested...

CVE-2026-35433

Improper input validation in .NET allows an unauthorized attacker to elevate privileges locally...

Microsoft .NET 输入验证错误漏洞

Microsoft .NET is a software framework developed by Microsoft Corporation in the United States. It focuses on agile software development, rapid application development, platform independence, and network transparency. There is an input validation vulnerability in Microsoft .NET. Attackers can...

Security Updates for Microsoft .NET Framework (February 2026)

The Microsoft .NET Framework installation on the remote host is missing a security update. It is, therefore, affected by the following vulnerability: - An information disclosure vulnerability. An attacker can exploit this to disclose potentially sensitive information. CVE-2025-55248 Note that...

Microsoft .NET Framework 安全漏洞

Microsoft .NET Framework is a comprehensive and consistent programming model from Microsoft Corporation USA and a development platform. The platform includes the C and Visual Basic programming languages, a public language runtime library, and an extensive class library. A security vulnerability...

Microsoft .NET Framework 竞争条件问题漏洞

The Microsoft .NET Framework is a comprehensive and consistent programming model developed by Microsoft Corporation. It serves as a development platform for building applications for Windows, Windows Store, Windows Phone, Windows Server, and Microsoft Azure. This platform includes programming...

Microsoft .NET 安全漏洞

Microsoft .NET is a software framework developed by Microsoft Corporation in the United States, dedicated to agile software development, rapid application development, platform independence, and network transparency. Versions of Microsoft .NET prior to 8.0 8.0.22 and .9.0 9.0.11 contained securit...

Microsoft .NET Framework Information Disclosure Vulnerability (KB5066131)

This host is missing an important security update according to Microsoft KB5066131 SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

Microsoft .NET 数据伪造问题漏洞

Microsoft .NET is a software framework from Microsoft Corporation USA dedicated to agile software development, rapid application development, platform-independence, and web transparency. A data forgery vulnerability exists in Microsoft . An attacker exploiting this vulnerability could remotely...

Vulnerability of Microsoft .NET Framework, .NET software platforms, and Microsoft Visual Studio development tools: This vulnerability relates to operations that occur outside of the buffer in memory, allowing an attacker to execute arbitrary code.

The vulnerability of Microsoft’s software platforms, such as the .NET Framework and Microsoft Visual Studio, relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a remote attacker to execute arbitrary code...

Microsoft .NET 安全漏洞

The Microsoft .NET Framework is Microsoft's new development platform after Windows DNA, which runs in a system virtual machine and provides new functionality and development tools for Application Programming Interfaces APIs. A remote code execution vulnerability exists in Microsoft .NET, which ca...

The vulnerability of Microsoft.NET software platforms and Microsoft Visual Studio development tools is related to buffer overflow attacks, allowing attackers to execute arbitrary code.

The vulnerability of Microsoft.NET software platforms and Microsoft Visual Studio development tools is related to buffer overflow attacks. Exploiting this vulnerability can allow an attacker to cause service interruptions remotely...

NuGet Client Security Feature Bypass Vulnerability

Description Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 6.0, .NET 7.0 and .NET 8.0. This advisory also provides guidance on what developers can do to update their applications to address this vulnerability. A security feature bypass...

The vulnerability of the Microsoft .NET Framework software platform, related to improper cleaning or release of resources, allows a perpetrator to cause a service failure.

The vulnerability of the Microsoft .NET Framework software platform is related to improper cleaning or release of resources. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of the Microsoft .NET Framework software, related to insufficient validation of input data, allows a perpetrator to execute arbitrary code.

The vulnerability of the Microsoft .NET Framework software platform is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the Microsoft .NET Framework software, related to errors in user interface information representation, allows attackers to perform spear-phishing attacks.

Vulnerability of the Microsoft .NET Framework software platform, related to errors in user interface information presentation. Exploitation of this vulnerability can allow attackers to perform spear-phishing attacks remotely...