CVSS: 7.8EPSS: 0%CPEs: 81EXPL: 0CVE-2023-24897 – .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-24897
.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24897 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.3EPSS: 0%CPEs: 6EXPL: 0CVE-2023-33135 – .NET and Visual Studio Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-33135
.NET and Visual Studio Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33135 •
CVSS: 7.3EPSS: 0%CPEs: 6EXPL: 0CVE-2023-33128 – .NET and Visual Studio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-33128
.NET and Visual Studio Remote Code Execution Vulnerability A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128 https://access.redhat.com/security/cve/CVE-2023-33128 https://bugzilla.redhat.com/show_bug.cgi?id=2212618 • CWE-416: Use After Free •
CVSS: 7.3EPSS: 0%CPEs: 6EXPL: 0CVE-2023-33126 – .NET and Visual Studio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-33126
.NET and Visual Studio Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33126 •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2023-32032 – .NET and Visual Studio Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-32032
.NET and Visual Studio Elevation of Privilege Vulnerability A vulnerability was found in dotnet. This issue can cause an elevation of privilege when the TarFile.ExtractToDirectory ignores the extraction directory argument. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32032 https://access.redhat.com/security/cve/CVE-2023-32032 https://bugzilla.redhat.com/show_bug.cgi?id=2212615 • CWE-20: Improper Input Validation •