Total
160 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2024-21312 | 1 Microsoft | 13 .net Framework, Windows 10 1607, Windows 10 1809 and 10 more | 2024-04-11 | N/A | 7.5 HIGH |
.NET Framework Denial of Service Vulnerability | |||||
CVE-2024-0057 | 1 Microsoft | 17 .net, .net Framework, Powershell and 14 more | 2024-04-11 | N/A | 9.8 CRITICAL |
NET, .NET Framework, and Visual Studio Security Feature Bypass Vulnerability | |||||
CVE-2024-0056 | 1 Microsoft | 19 .net, .net Framework, Microsoft.data.sqlclient and 16 more | 2024-04-11 | N/A | 8.7 HIGH |
Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability | |||||
CVE-2019-11397 | 2 Microsoft, Rapidflows | 2 .net Framework, Rapid4 | 2024-02-14 | 4.0 MEDIUM | 6.5 MEDIUM |
GetFile.aspx in Rapid4 RapidFlows Enterprise Application Builder 4.5M.23 (when used with .NET Framework 4.5) allows Local File Inclusion via the FileDesc parameter. | |||||
CVE-2023-36560 | 1 Microsoft | 14 .net Framework, Windows 10 1507, Windows 10 1607 and 11 more | 2024-02-05 | N/A | 8.8 HIGH |
ASP.NET Security Feature Bypass Vulnerability | |||||
CVE-2023-36049 | 1 Microsoft | 16 .net, .net Framework, Visual Studio 2022 and 13 more | 2024-02-05 | N/A | 9.8 CRITICAL |
.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability | |||||
CVE-2023-36899 | 1 Microsoft | 11 .net, .net Framework, Windows 10 1809 and 8 more | 2024-02-05 | N/A | 8.8 HIGH |
ASP.NET Elevation of Privilege Vulnerability | |||||
CVE-2023-36873 | 1 Microsoft | 12 .net Framework, Windows 10 1607, Windows 10 1809 and 9 more | 2024-02-05 | N/A | 5.9 MEDIUM |
.NET Framework Spoofing Vulnerability | |||||
CVE-2023-24936 | 1 Microsoft | 14 .net, .net Framework, Windows 10 1507 and 11 more | 2024-02-04 | N/A | 7.5 HIGH |
.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability | |||||
CVE-2023-21808 | 1 Microsoft | 25 .net, .net Framework, Visual Studio 2017 and 22 more | 2024-02-04 | N/A | 7.8 HIGH |
.NET and Visual Studio Remote Code Execution Vulnerability | |||||
CVE-2022-41064 | 1 Microsoft | 12 .net Framework, Nuget, Windows 10 and 9 more | 2024-02-04 | N/A | 5.8 MEDIUM |
.NET Framework Information Disclosure Vulnerability | |||||
CVE-2022-26929 | 1 Microsoft | 11 .net Framework, Windows 10, Windows 11 and 8 more | 2024-02-04 | N/A | 7.8 HIGH |
.NET Framework Remote Code Execution Vulnerability | |||||
CVE-2022-26832 | 1 Microsoft | 11 .net Framework, Windows 10, Windows 11 and 8 more | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
.NET Framework Denial of Service Vulnerability | |||||
CVE-2022-30130 | 1 Microsoft | 11 .net Framework, Windows 10, Windows 11 and 8 more | 2024-02-04 | 4.3 MEDIUM | 3.3 LOW |
.NET Framework Denial of Service Vulnerability | |||||
CVE-2022-21911 | 1 Microsoft | 10 .net Framework, Windows 10, Windows 11 and 7 more | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
.NET Framework Denial of Service Vulnerability | |||||
CVE-2020-16937 | 1 Microsoft | 9 .net Framework, Windows 10, Windows 7 and 6 more | 2024-02-04 | 4.3 MEDIUM | 4.7 MEDIUM |
<p>An information disclosure vulnerability exists when the .NET Framework improperly handles objects in memory. An attacker who successfully exploited the vulnerability could disclose contents of an affected system's memory.</p> <p>To exploit the vulnerability, an authenticated attacker would need to run a specially crafted application.</p> <p>The update addresses the vulnerability by correcting how the .NET Framework handles objects in memory.</p> | |||||
CVE-2021-24111 | 1 Microsoft | 9 .net Framework, Windows 10, Windows 7 and 6 more | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
.NET Framework Denial of Service Vulnerability | |||||
CVE-2020-1046 | 1 Microsoft | 8 .net Framework, Windows 10, Windows 7 and 5 more | 2024-02-04 | 9.3 HIGH | 7.8 HIGH |
A remote code execution vulnerability exists when Microsoft .NET Framework processes input. An attacker who successfully exploited this vulnerability could take control of an affected system. To exploit the vulnerability, an attacker would need to be able to upload a specially crafted file to a web application. The security update addresses the vulnerability by correcting how .NET Framework processes input. | |||||
CVE-2020-1066 | 1 Microsoft | 3 .net Framework, Windows 7, Windows Server 2008 | 2024-02-04 | 4.6 MEDIUM | 7.8 HIGH |
An elevation of privilege vulnerability exists in .NET Framework which could allow an attacker to elevate their privilege level.To exploit the vulnerability, an attacker would first have to access the local machine, and then run a malicious program.The update addresses the vulnerability by correcting how .NET Framework activates COM objects., aka '.NET Framework Elevation of Privilege Vulnerability'. | |||||
CVE-2020-1147 | 1 Microsoft | 14 .net Core, .net Framework, Sharepoint Enterprise Server and 11 more | 2024-02-04 | 6.8 MEDIUM | 7.8 HIGH |
A remote code execution vulnerability exists in .NET Framework, Microsoft SharePoint, and Visual Studio when the software fails to check the source markup of XML file input, aka '.NET Framework, SharePoint Server, and Visual Studio Remote Code Execution Vulnerability'. |