CVSS: 9.0EPSS: 86%CPEs: 42EXPL: 2CVE-2023-36899 – ASP.NET Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36899
08 Aug 2023 — ASP.NET Elevation of Privilege Vulnerability • https://github.com/d0rb/CVE-2023-36899 • CWE-20: Improper Input Validation •
CVSS: 7.4EPSS: 1%CPEs: 50EXPL: 0CVE-2023-36873 – .NET Framework Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2023-36873
08 Aug 2023 — .NET Framework Spoofing Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36873 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 27%CPEs: 80EXPL: 0CVE-2023-32030 – .NET and Visual Studio Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2023-32030
14 Jun 2023 — .NET and Visual Studio Denial of Service Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32030 •
CVSS: 7.8EPSS: 1%CPEs: 86EXPL: 0CVE-2023-24895 – .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-24895
14 Jun 2023 — .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24895 •
CVSS: 7.8EPSS: 1%CPEs: 61EXPL: 0CVE-2023-29326 – .NET Framework Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-29326
14 Jun 2023 — .NET Framework Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29326 •
CVSS: 7.8EPSS: 1%CPEs: 81EXPL: 0CVE-2023-24897 – .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-24897
14 Jun 2023 — .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24897 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.6EPSS: 5%CPEs: 82EXPL: 0CVE-2023-24936 – .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-24936
14 Jun 2023 — .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability A flaw was found in dotnet. This issue can allow bypass restrictions when deserializing a DataSet or DataTable from XML. .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24936 •
CVSS: 7.8EPSS: 10%CPEs: 82EXPL: 0CVE-2023-29331 – .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2023-29331
14 Jun 2023 — .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability A vulnerability was found in dotnet. This issue can lead to a denial of service while processing X509 Certificates. .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.8EPSS: 1%CPEs: 96EXPL: 0CVE-2023-21808 – .NET and Visual Studio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-21808
14 Feb 2023 — .NET and Visual Studio Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21808 • CWE-416: Use After Free •
CVSS: 5.0EPSS: 0%CPEs: 71EXPL: 0CVE-2023-21722 – .NET Framework Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2023-21722
14 Feb 2023 — .NET Framework Denial of Service Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21722 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •