CVSS: 7.3EPSS: 1%CPEs: 6EXPL: 0CVE-2023-33135 – .NET and Visual Studio Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-33135
13 Jun 2023 — .NET and Visual Studio Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33135 •
CVSS: 7.3EPSS: 1%CPEs: 6EXPL: 0CVE-2023-33128 – .NET and Visual Studio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-33128
13 Jun 2023 — .NET and Visual Studio Remote Code Execution Vulnerability A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption. .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18.... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128 • CWE-416: Use After Free •
CVSS: 7.3EPSS: 1%CPEs: 6EXPL: 0CVE-2023-33126 – .NET and Visual Studio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-33126
13 Jun 2023 — .NET and Visual Studio Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33126 •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2023-32032 – .NET and Visual Studio Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-32032
13 Jun 2023 — .NET and Visual Studio Elevation of Privilege Vulnerability A vulnerability was found in dotnet. This issue can cause an elevation of privilege when the TarFile.ExtractToDirectory ignores the extraction directory argument. .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 7.0.107 and .NET Runtime 7.0.... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32032 • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 4%CPEs: 10EXPL: 0CVE-2023-33139 – Visual Studio Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-33139
13 Jun 2023 — Visual Studio Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33139 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 6EXPL: 0CVE-2023-28299 – Visual Studio Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2023-28299
11 Apr 2023 — Visual Studio Spoofing Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28299 •
CVSS: 7.8EPSS: 4%CPEs: 6EXPL: 0CVE-2023-28296 – Visual Studio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-28296
11 Apr 2023 — Visual Studio Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28296 • CWE-415: Double Free •
CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 0CVE-2023-28263 – Visual Studio Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-28263
11 Apr 2023 — Visual Studio Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28263 • CWE-170: Improper Null Termination •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2023-28262 – Visual Studio Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-28262
11 Apr 2023 — Visual Studio Elevation of Privilege Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28262 • CWE-122: Heap-based Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2023-28260 – .NET DLL Hijacking Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-28260
11 Apr 2023 — .NET DLL Hijacking Remote Code Execution Vulnerability It was discovered that .NET did not properly manage dll files. An attacker could potentially use this issue to execute arbitrary code. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28260 •