CVSS: 7.8EPSS: 27%CPEs: 37EXPL: 0CVE-2024-21312 – .NET Framework Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2024-21312
09 Jan 2024 — .NET Framework Denial of Service Vulnerability Vulnerabilidad de denegación de servicio de .NET Framework • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21312 • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 8%CPEs: 75EXPL: 0CVE-2024-0057 – NET, .NET Framework, and Visual Studio Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2024-0057
09 Jan 2024 — NET, .NET Framework, and Visual Studio Security Feature Bypass Vulnerability Vulnerabididad en NET, .NET Framework y Visual Studio Security Feature Bypass A security feature bypass vulnerability exists when Microsoft .NET Framework-based applications use X.509 chain building APIs but do not completely validate the X.509 certificate due to a logic flaw. An attacker could present an arbitrary untrusted certificate with malformed signatures, triggering a bug in the framework. The framework will correctly repor... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-0057 • CWE-20: Improper Input Validation CWE-295: Improper Certificate Validation •
CVSS: 8.7EPSS: 0%CPEs: 77EXPL: 0CVE-2024-0056 – Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2024-0056
09 Jan 2024 — Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability Vulnerabilidad de omisión de característica de seguridad del proveedor de datos SQL de Microsoft.Data.SqlClient y System.Data.SqlClient A vulnerability was found in the .NET Framework. This vulnerability exists in the Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data provider where an attackercan perform an AiTM (adversary-in-the-middle) attack between the SQL client and the SQL server. This ... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-0056 • CWE-319: Cleartext Transmission of Sensitive Information CWE-420: Unprotected Alternate Channel •
CVSS: 10.0EPSS: 13%CPEs: 82EXPL: 0CVE-2023-36049 – .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36049
14 Nov 2023 — .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability Vulnerabilidad de elevación de privilegios en .NET, .NET Framework y Visual Studio A vulnerability was found in FormatFtpCommand in the .NET package that may result in a CRLF injection arbitrary file write and deletion. This vulnerability allows remote attackers to create or delete arbitrary files on FTP servers implemented using affected versions of Microsoft .NET. Interaction with the .NET framework is required to exploit this vu... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36049 • CWE-20: Improper Input Validation CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 9.0EPSS: 24%CPEs: 74EXPL: 0CVE-2023-36560 – ASP.NET Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2023-36560
14 Nov 2023 — ASP.NET Security Feature Bypass Vulnerability Vulnerabilidad de omisión de característica de seguridad de ASP.NET. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36560 •
CVSS: 7.8EPSS: 1%CPEs: 28EXPL: 0CVE-2023-36788 – .NET Framework Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-36788
12 Sep 2023 — .NET Framework Remote Code Execution Vulnerability Vulnerabilidad de Ejecución Remota de Código de .NET Framework • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36788 •
CVSS: 7.8EPSS: 1%CPEs: 47EXPL: 0CVE-2023-36792 – Visual Studio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-36792
12 Sep 2023 — Visual Studio Remote Code Execution Vulnerability Vulnerabilidad de Ejecución Remota de Códigode Visual Studio • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36792 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 1%CPEs: 48EXPL: 0CVE-2023-36793 – Visual Studio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-36793
12 Sep 2023 — Visual Studio Remote Code Execution Vulnerability Vulnerabilidad de Ejecución Remota de Código de Visual Studio • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36793 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.8EPSS: 1%CPEs: 48EXPL: 0CVE-2023-36794 – Visual Studio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-36794
12 Sep 2023 — Visual Studio Remote Code Execution Vulnerability Vulnerabilidad de Ejecución Remota de Código de Visual Studio • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36794 • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 7.8EPSS: 1%CPEs: 48EXPL: 0CVE-2023-36796 – Visual Studio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-36796
12 Sep 2023 — Visual Studio Remote Code Execution Vulnerability Vulnerabilidad de Ejecución Remota de Código de Visual Studio • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36796 • CWE-191: Integer Underflow (Wrap or Wraparound) •