CVSS: 7.3EPSS: 32%CPEs: 16EXPL: 1CVE-2024-21409 – .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-21409
09 Apr 2024 — .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código en .NET, .NET Framework y Visual Studio • https://github.com/vkairy/cve-2024-21409-repro • CWE-416: Use After Free •
CVSS: 10.0EPSS: 91%CPEs: 11EXPL: 1CVE-2024-29059 – Microsoft .NET Framework Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-29059
22 Mar 2024 — .NET Framework Information Disclosure Vulnerability Vulnerabilidad de divulgación de información de .NET Framework Microsoft .NET Framework contains an information disclosure vulnerability that exposes the ObjRef URI to an attacker, ultimately enabling remote code execution. • https://github.com/codewhitesec/HttpRemotingObjRefLeak • CWE-209: Generation of Error Message Containing Sensitive Information •
CVSS: 7.8EPSS: 6%CPEs: 14EXPL: 0CVE-2024-26190 – Microsoft QUIC Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2024-26190
12 Mar 2024 — Microsoft QUIC Denial of Service Vulnerability Vulnerabilidad de denegación de servicio de Microsoft QUIC • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26190 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.8EPSS: 10%CPEs: 8EXPL: 0CVE-2024-21392 – .NET and Visual Studio Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2024-21392
12 Mar 2024 — .NET and Visual Studio Denial of Service Vulnerability Vulnerabilidad de denegación de servicio en .NET y Visual Studio A vulnerability was found in dotnet. The YARP HTTP/2 WebSocket support in .NET Core can cause a denial of service (DoS). It was discovered that .NET did not properly handle certain specially crafted requests. An attacker could potentially use this issue to cause a resource leak, leading to a denial of service. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21392 • CWE-400: Uncontrolled Resource Consumption •