16 results (0.013 seconds)

CVSS: 7.6EPSS: 0%CPEs: 8EXPL: 0

CVE-2025-21172 – .NET and Visual Studio Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2025-21172

14 Jan 2025 — .NET and Visual Studio Remote Code Execution Vulnerability A remote code execution vulnerability was found in .NET. This flaw allows an attacker to load a specially crafted file in .NET. It was discovered that .NET did not properly handle input provided to its Convert.TryToHexString method. An attacker could possibly use this issue to execute arbitrary code. It was discovered that .NET did not properly handle an integer overflow when processing certain specially crafted files. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21172 • CWE-122: Heap-based Buffer Overflow CWE-190: Integer Overflow or Wraparound •

CVSS: 7.3EPSS: 0%CPEs: 1EXPL: 0

CVE-2025-21405 – Visual Studio Elevation of Privilege Vulnerability

https://notcve.org/view.php?id=CVE-2025-21405

14 Jan 2025 — Visual Studio Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21405 • CWE-284: Improper Access Control •

CVSS: 7.3EPSS: 0%CPEs: 6EXPL: 0

CVE-2025-21173 – .NET Elevation of Privilege Vulnerability

https://notcve.org/view.php?id=CVE-2025-21173

14 Jan 2025 — .NET Elevation of Privilege Vulnerability An elevation of privilege vulnerability was found in .NET. This flaw allows an attacker to write a specially crafted file in the security context of the local system. It was discovered that .NET did not properly handle input provided to its Convert.TryToHexString method. An attacker could possibly use this issue to execute arbitrary code. It was discovered that .NET did not properly handle an integer overflow when processing certain specially crafted files. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21173 • CWE-379: Creation of Temporary File in Directory with Insecure Permissions •

CVSS: 10.0EPSS: 0%CPEs: 6EXPL: 0

CVE-2025-21178 – Visual Studio Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2025-21178

14 Jan 2025 — Visual Studio Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21178 • CWE-122: Heap-based Buffer Overflow CWE-125: Out-of-bounds Read •

CVSS: 10.0EPSS: 0%CPEs: 16EXPL: 0

CVE-2025-21176 – .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2025-21176

14 Jan 2025 — .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability A remote code execution vulnerability was found in .NET. This flaw allows an attacker to load a specially crafted file in .NET. It was discovered that .NET did not properly handle input provided to its Convert.TryToHexString method. An attacker could possibly use this issue to execute arbitrary code. It was discovered that .NET did not properly handle an integer overflow when processing certain specially crafted files. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21176 • CWE-126: Buffer Over-read •

CVSS: 7.6EPSS: 0%CPEs: 6EXPL: 0

CVE-2025-21171 – .NET Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2025-21171

14 Jan 2025 — .NET Remote Code Execution Vulnerability A remote code execution vulnerability was found in .NET. This flaw allows an attacker to load a specially crafted file into a vulnerable application. It was discovered that .NET did not properly handle input provided to its Convert.TryToHexString method. An attacker could possibly use this issue to execute arbitrary code. It was discovered that .NET did not properly handle an integer overflow when processing certain specially crafted files. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21171 • CWE-122: Heap-based Buffer Overflow •

CVSS: 10.0EPSS: 0%CPEs: 15EXPL: 0

CVE-2024-28938 – Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2024-28938

09 Apr 2024 — Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código del controlador ODBC de Microsoft para SQL Server • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28938 • CWE-125: Out-of-bounds Read •

CVSS: 10.0EPSS: 0%CPEs: 15EXPL: 0

CVE-2024-28937 – Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2024-28937

09 Apr 2024 — Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código del controlador ODBC de Microsoft para SQL Server • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28937 • CWE-122: Heap-based Buffer Overflow •

CVSS: 10.0EPSS: 0%CPEs: 15EXPL: 0

CVE-2024-28935 – Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2024-28935

09 Apr 2024 — Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código del controlador ODBC de Microsoft para SQL Server • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28935 • CWE-122: Heap-based Buffer Overflow •

CVSS: 10.0EPSS: 0%CPEs: 15EXPL: 0

CVE-2024-28934 – Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2024-28934

09 Apr 2024 — Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código del controlador ODBC de Microsoft para SQL Server • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-28934 • CWE-121: Stack-based Buffer Overflow •