Vulnerability-Lookup

CVE-2023-29326 (GCVE-0-2023-29326)

Vulnerability from cvelistv5 – Published: 2023-06-14 14:52 – Updated: 2025-01-01 01:43

Title

.NET Framework Remote Code Execution Vulnerability

Summary

.NET Framework Remote Code Execution Vulnerability

Severity ?

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

CWE

Remote Code Execution

Assigner

microsoft

References

1 reference

URL	Tags
https://msrc.microsoft.com/update-guide/vulnerabi…	vendor-advisory

Impacted products

9 products

Vendor	Product	Version
Microsoft	Microsoft .NET Framework 3.5 AND 4.8	Affected: 4.8.0 , < 4.8.4644.0 (custom)
Microsoft	Microsoft .NET Framework 3.5 AND 4.7.2	Affected: 4.7.0 , < 4.7.4050.0 (custom)
Microsoft	Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2	Affected: 3.0.0.0 , < 10.0.14393.5989 (custom)
Microsoft	Microsoft .NET Framework 3.5 AND 4.8.1	Affected: 4.8.1 , < 4.8.9166.0 (custom)
Microsoft	Microsoft .NET Framework 2.0 Service Pack 2	Affected: 2.0.0 , < 3.0.6920.8954; 2.0.50727.8970 (custom)
Microsoft	Microsoft .NET Framework 3.0 Service Pack 2	Affected: 3.0.0 , < 3.0.6920.8954; 2.0.50727.8970 (custom)
Microsoft	Microsoft .NET Framework 3.5	Affected: 3.5.0 , < 3.0.6920.8954; 2.0.50727.8970 (custom)
Microsoft	Microsoft .NET Framework 3.5.1	Affected: 3.5.0 , < 3.0.6920.8954; 2.0.50727.8970 (custom)
Microsoft	Microsoft .NET Framework 3.5 and 4.6.2	Affected: 4.7.0 , < 10.0.10240.19983 (custom)

Date Public ?

2023-06-13 07:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T14:07:45.699Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": ".NET Framework Remote Code Execution Vulnerability",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29326"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-29326",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-27T19:44:57.546610Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-27T19:45:17.360Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "platforms": [
            "Windows 10 Version 1809 for 32-bit Systems",
            "Windows 10 Version 1809 for x64-based Systems",
            "Windows Server 2019",
            "Windows Server 2019 (Server Core installation)",
            "Windows Server 2022",
            "Windows Server 2022 (Server Core installation)",
            "Windows 11 version 21H2 for x64-based Systems",
            "Windows 11 version 21H2 for ARM64-based Systems",
            "Windows 10 Version 21H2 for 32-bit Systems",
            "Windows 10 Version 21H2 for ARM64-based Systems",
            "Windows 10 Version 21H2 for x64-based Systems",
            "Windows 10 Version 22H2 for x64-based Systems",
            "Windows 10 Version 22H2 for ARM64-based Systems",
            "Windows 10 Version 22H2 for 32-bit Systems"
          ],
          "product": "Microsoft .NET Framework 3.5 AND 4.8",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "4.8.4644.0",
              "status": "affected",
              "version": "4.8.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows 10 Version 1809 for 32-bit Systems",
            "Windows 10 Version 1809 for x64-based Systems",
            "Windows 10 Version 1809 for ARM64-based Systems",
            "Windows Server 2019",
            "Windows Server 2019 (Server Core installation)"
          ],
          "product": "Microsoft .NET Framework 3.5 AND 4.7.2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "4.7.4050.0",
              "status": "affected",
              "version": "4.7.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows 10 Version 1607 for 32-bit Systems",
            "Windows 10 Version 1607 for x64-based Systems",
            "Windows Server 2016",
            "Windows Server 2016 (Server Core installation)"
          ],
          "product": "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.14393.5989",
              "status": "affected",
              "version": "3.0.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows Server 2022",
            "Windows Server 2022 (Server Core installation)",
            "Windows 11 version 21H2 for x64-based Systems",
            "Windows 11 version 21H2 for ARM64-based Systems",
            "Windows 10 Version 21H2 for 32-bit Systems",
            "Windows 10 Version 21H2 for ARM64-based Systems",
            "Windows 10 Version 21H2 for x64-based Systems",
            "Windows 11 Version 22H2 for ARM64-based Systems",
            "Windows 11 Version 22H2 for x64-based Systems",
            "Windows 10 Version 22H2 for x64-based Systems",
            "Windows 10 Version 22H2 for ARM64-based Systems",
            "Windows 10 Version 22H2 for 32-bit Systems"
          ],
          "product": "Microsoft .NET Framework 3.5 AND 4.8.1",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "4.8.9166.0",
              "status": "affected",
              "version": "4.8.1",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows Server 2008 for 32-bit Systems Service Pack 2",
            "Windows Server 2008 for x64-based Systems Service Pack 2"
          ],
          "product": "Microsoft .NET Framework 2.0 Service Pack 2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "3.0.6920.8954; 2.0.50727.8970",
              "status": "affected",
              "version": "2.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows Server 2008 for 32-bit Systems Service Pack 2",
            "Windows Server 2008 for x64-based Systems Service Pack 2"
          ],
          "product": "Microsoft .NET Framework 3.0 Service Pack 2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "3.0.6920.8954; 2.0.50727.8970",
              "status": "affected",
              "version": "3.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows Server 2012",
            "Windows Server 2012 (Server Core installation)",
            "Windows Server 2012 R2",
            "Windows Server 2012 R2 (Server Core installation)"
          ],
          "product": "Microsoft .NET Framework 3.5",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "3.0.6920.8954; 2.0.50727.8970",
              "status": "affected",
              "version": "3.5.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows Server 2008 R2 for x64-based Systems Service Pack 1",
            "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)"
          ],
          "product": "Microsoft .NET Framework 3.5.1",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "3.0.6920.8954; 2.0.50727.8970",
              "status": "affected",
              "version": "3.5.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows 10 for 32-bit Systems",
            "Windows 10 for x64-based Systems"
          ],
          "product": "Microsoft .NET Framework 3.5 and 4.6.2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.10240.19983",
              "status": "affected",
              "version": "4.7.0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.8.4644.0",
                  "versionStartIncluding": "4.8.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.7.4050.0",
                  "versionStartIncluding": "4.7.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:microsoft:.net_framework:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "10.0.14393.5989",
                  "versionStartIncluding": "3.0.0.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.8.9166.0",
                  "versionStartIncluding": "4.8.1",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:microsoft:.net:*:sp2:*:*:*:*:*:*",
                  "versionEndExcluding": "3.0.6920.8954; 2.0.50727.8970",
                  "versionStartIncluding": "2.0.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:microsoft:.net:*:sp2:*:*:*:*:*:*",
                  "versionEndExcluding": "3.0.6920.8954; 2.0.50727.8970",
                  "versionStartIncluding": "3.0.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "3.0.6920.8954; 2.0.50727.8970",
                  "versionStartIncluding": "3.5.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "3.0.6920.8954; 2.0.50727.8970",
                  "versionStartIncluding": "3.5.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "10.0.10240.19983",
                  "versionStartIncluding": "4.7.0",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "datePublic": "2023-06-13T07:00:00.000Z",
      "descriptions": [
        {
          "lang": "en-US",
          "value": ".NET Framework Remote Code Execution Vulnerability"
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en-US",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Remote Code Execution",
              "lang": "en-US",
              "type": "Impact"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-01-01T01:43:34.168Z",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "name": ".NET Framework Remote Code Execution Vulnerability",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29326"
        }
      ],
      "title": ".NET Framework Remote Code Execution Vulnerability"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2023-29326",
    "datePublished": "2023-06-14T14:52:11.778Z",
    "dateReserved": "2023-04-04T22:34:18.378Z",
    "dateUpdated": "2025-01-01T01:43:34.168Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2023-29326",
      "date": "2026-05-18",
      "epss": "0.00622",
      "percentile": "0.70341"
    },
    "fkie_nvd": {
      "configurations": "[{\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:3.5.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8EDC4407-7E92-4E60-82F0-0C87D1860D3A\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\", \"matchCriteriaId\": \"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"A045AC0A-471E-444C-B3B0-4CABC23E8CFB\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"28A7FEE9-B473-48A0-B0ED-A5CC1E44194C\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.8.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"934D4E46-12C1-41DC-A28C-A2C430E965E4\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"5E491E46-1917-41FE-8F9A-BB0BDDEB42C3\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"0A1BC97A-263E-4291-8AEF-02EE4E6031E9\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*\", \"matchCriteriaId\": \"8FC46499-DB6E-48BF-9334-85EE27AFE7AF\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"83A79DD6-E74E-419F-93F1-323B68502633\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"61959ACC-B608-4556-92AF-4D94B338907A\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*\", \"matchCriteriaId\": \"A9D54EE6-30AF-411C-A285-A4DCB6C6EC06\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"C230D3BF-7FCE-405C-B62E-B9190C995C3C\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"1FD62DCB-66D1-4CEA-828E-0BD302AC63CA\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*\", \"matchCriteriaId\": \"F2D718BD-C4B7-48DB-BE78-B9CA22F27DD0\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"0C3552E0-F793-4CDD-965D-457495475805\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:*\", \"matchCriteriaId\": \"B2D24C54-F04F-4717-B614-FE67B3ED9DC0\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"D5EC3F68-8F41-4F6B-B2E5-920322A4A321\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"821614DD-37DD-44E2-A8A4-FE8D23A33C3C\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2D3F18AF-84ED-473B-A8DF-65EB23C475AF\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"5E491E46-1917-41FE-8F9A-BB0BDDEB42C3\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"0A1BC97A-263E-4291-8AEF-02EE4E6031E9\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"306B7CE6-8239-4AED-9ED4-4C9F5B349F58\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"345FCD64-D37B-425B-B64C-8B1640B7E850\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*\", \"matchCriteriaId\": \"8FC46499-DB6E-48BF-9334-85EE27AFE7AF\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"83A79DD6-E74E-419F-93F1-323B68502633\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"61959ACC-B608-4556-92AF-4D94B338907A\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*\", \"matchCriteriaId\": \"A9D54EE6-30AF-411C-A285-A4DCB6C6EC06\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"C230D3BF-7FCE-405C-B62E-B9190C995C3C\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"1FD62DCB-66D1-4CEA-828E-0BD302AC63CA\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*\", \"matchCriteriaId\": \"F2D718BD-C4B7-48DB-BE78-B9CA22F27DD0\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"0C3552E0-F793-4CDD-965D-457495475805\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:*\", \"matchCriteriaId\": \"B2D24C54-F04F-4717-B614-FE67B3ED9DC0\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"D5EC3F68-8F41-4F6B-B2E5-920322A4A321\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB79EE26-FC32-417D-A49C-A1A63165A968\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"821614DD-37DD-44E2-A8A4-FE8D23A33C3C\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"306B7CE6-8239-4AED-9ED4-4C9F5B349F58\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"345FCD64-D37B-425B-B64C-8B1640B7E850\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB79EE26-FC32-417D-A49C-A1A63165A968\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"734112B3-1383-4BE3-8721-C0F84566B764\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"36B0E40A-84EF-4099-A395-75D6B8CDA196\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"5E491E46-1917-41FE-8F9A-BB0BDDEB42C3\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"0A1BC97A-263E-4291-8AEF-02EE4E6031E9\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB18C4CE-5917-401E-ACF7-2747084FD36E\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:3.0:sp2:*:*:*:*:*:*\", \"matchCriteriaId\": \"D400E856-2B2E-4CEA-8CA5-309FDF371CEA\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*\", \"matchCriteriaId\": \"2127D10C-B6F3-4C1D-B9AA-5D78513CC996\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*\", \"matchCriteriaId\": \"AB425562-C0A0-452E-AABE-F70522F15E1A\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:*\", \"matchCriteriaId\": \"42A6DF09-B8E1-414D-97E7-453566055279\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*\", \"matchCriteriaId\": \"2127D10C-B6F3-4C1D-B9AA-5D78513CC996\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*\", \"matchCriteriaId\": \"AB425562-C0A0-452E-AABE-F70522F15E1A\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \".NET Framework Remote Code Execution Vulnerability\"}]",
      "id": "CVE-2023-29326",
      "lastModified": "2024-11-21T07:56:52.320",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"secure@microsoft.com\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\", \"baseScore\": 7.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 5.9}]}",
      "published": "2023-06-14T15:15:09.693",
      "references": "[{\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29326\", \"source\": \"secure@microsoft.com\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29326\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}]",
      "sourceIdentifier": "secure@microsoft.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2023-29326\",\"sourceIdentifier\":\"secure@microsoft.com\",\"published\":\"2023-06-14T15:15:09.693\",\"lastModified\":\"2024-11-21T07:56:52.320\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\".NET Framework Remote Code Execution Vulnerability\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secure@microsoft.com\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8EDC4407-7E92-4E60-82F0-0C87D1860D3A\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\",\"matchCriteriaId\":\"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"A045AC0A-471E-444C-B3B0-4CABC23E8CFB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"28A7FEE9-B473-48A0-B0ED-A5CC1E44194C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.8.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"934D4E46-12C1-41DC-A28C-A2C430E965E4\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"5E491E46-1917-41FE-8F9A-BB0BDDEB42C3\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"0A1BC97A-263E-4291-8AEF-02EE4E6031E9\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"8FC46499-DB6E-48BF-9334-85EE27AFE7AF\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"83A79DD6-E74E-419F-93F1-323B68502633\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"61959ACC-B608-4556-92AF-4D94B338907A\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"A9D54EE6-30AF-411C-A285-A4DCB6C6EC06\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"C230D3BF-7FCE-405C-B62E-B9190C995C3C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"1FD62DCB-66D1-4CEA-828E-0BD302AC63CA\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"F2D718BD-C4B7-48DB-BE78-B9CA22F27DD0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"0C3552E0-F793-4CDD-965D-457495475805\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"B2D24C54-F04F-4717-B614-FE67B3ED9DC0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"D5EC3F68-8F41-4F6B-B2E5-920322A4A321\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"821614DD-37DD-44E2-A8A4-FE8D23A33C3C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2D3F18AF-84ED-473B-A8DF-65EB23C475AF\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"5E491E46-1917-41FE-8F9A-BB0BDDEB42C3\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"0A1BC97A-263E-4291-8AEF-02EE4E6031E9\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"306B7CE6-8239-4AED-9ED4-4C9F5B349F58\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"345FCD64-D37B-425B-B64C-8B1640B7E850\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"8FC46499-DB6E-48BF-9334-85EE27AFE7AF\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"83A79DD6-E74E-419F-93F1-323B68502633\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"61959ACC-B608-4556-92AF-4D94B338907A\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"A9D54EE6-30AF-411C-A285-A4DCB6C6EC06\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"C230D3BF-7FCE-405C-B62E-B9190C995C3C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"1FD62DCB-66D1-4CEA-828E-0BD302AC63CA\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"F2D718BD-C4B7-48DB-BE78-B9CA22F27DD0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"0C3552E0-F793-4CDD-965D-457495475805\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:*\",\"matchCriteriaId\":\"B2D24C54-F04F-4717-B614-FE67B3ED9DC0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"D5EC3F68-8F41-4F6B-B2E5-920322A4A321\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB79EE26-FC32-417D-A49C-A1A63165A968\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"821614DD-37DD-44E2-A8A4-FE8D23A33C3C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"306B7CE6-8239-4AED-9ED4-4C9F5B349F58\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"345FCD64-D37B-425B-B64C-8B1640B7E850\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB79EE26-FC32-417D-A49C-A1A63165A968\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"734112B3-1383-4BE3-8721-C0F84566B764\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"36B0E40A-84EF-4099-A395-75D6B8CDA196\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"5E491E46-1917-41FE-8F9A-BB0BDDEB42C3\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"0A1BC97A-263E-4291-8AEF-02EE4E6031E9\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E039CE1F-B988-4741-AE2E-5B36E2AF9688\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB18C4CE-5917-401E-ACF7-2747084FD36E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.0:sp2:*:*:*:*:*:*\",\"matchCriteriaId\":\"D400E856-2B2E-4CEA-8CA5-309FDF371CEA\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*\",\"matchCriteriaId\":\"2127D10C-B6F3-4C1D-B9AA-5D78513CC996\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*\",\"matchCriteriaId\":\"AB425562-C0A0-452E-AABE-F70522F15E1A\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:*\",\"matchCriteriaId\":\"42A6DF09-B8E1-414D-97E7-453566055279\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*\",\"matchCriteriaId\":\"2127D10C-B6F3-4C1D-B9AA-5D78513CC996\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*\",\"matchCriteriaId\":\"AB425562-C0A0-452E-AABE-F70522F15E1A\"}]}]}],\"references\":[{\"url\":\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29326\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29326\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29326\", \"name\": \".NET Framework Remote Code Execution Vulnerability\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T14:07:45.699Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-29326\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-09-27T19:44:57.546610Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-09-27T19:45:09.194Z\"}}], \"cna\": {\"title\": \".NET Framework Remote Code Execution Vulnerability\", \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"version\": \"3.1\", \"baseScore\": 7.8, \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C\"}, \"scenarios\": [{\"lang\": \"en-US\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"Microsoft\", \"product\": \"Microsoft .NET Framework 3.5 AND 4.8\", \"versions\": [{\"status\": \"affected\", \"version\": \"4.8.0\", \"lessThan\": \"4.8.4644.0\", \"versionType\": \"custom\"}], \"platforms\": [\"Windows 10 Version 1809 for 32-bit Systems\", \"Windows 10 Version 1809 for x64-based Systems\", \"Windows Server 2019\", \"Windows Server 2019 (Server Core installation)\", \"Windows Server 2022\", \"Windows Server 2022 (Server Core installation)\", \"Windows 11 version 21H2 for x64-based Systems\", \"Windows 11 version 21H2 for ARM64-based Systems\", \"Windows 10 Version 21H2 for 32-bit Systems\", \"Windows 10 Version 21H2 for ARM64-based Systems\", \"Windows 10 Version 21H2 for x64-based Systems\", \"Windows 10 Version 22H2 for x64-based Systems\", \"Windows 10 Version 22H2 for ARM64-based Systems\", \"Windows 10 Version 22H2 for 32-bit Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft .NET Framework 3.5 AND 4.7.2\", \"versions\": [{\"status\": \"affected\", \"version\": \"4.7.0\", \"lessThan\": \"4.7.4050.0\", \"versionType\": \"custom\"}], \"platforms\": [\"Windows 10 Version 1809 for 32-bit Systems\", \"Windows 10 Version 1809 for x64-based Systems\", \"Windows 10 Version 1809 for ARM64-based Systems\", \"Windows Server 2019\", \"Windows Server 2019 (Server Core installation)\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2\", \"versions\": [{\"status\": \"affected\", \"version\": \"3.0.0.0\", \"lessThan\": \"10.0.14393.5989\", \"versionType\": \"custom\"}], \"platforms\": [\"Windows 10 Version 1607 for 32-bit Systems\", \"Windows 10 Version 1607 for x64-based Systems\", \"Windows Server 2016\", \"Windows Server 2016 (Server Core installation)\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft .NET Framework 3.5 AND 4.8.1\", \"versions\": [{\"status\": \"affected\", \"version\": \"4.8.1\", \"lessThan\": \"4.8.9166.0\", \"versionType\": \"custom\"}], \"platforms\": [\"Windows Server 2022\", \"Windows Server 2022 (Server Core installation)\", \"Windows 11 version 21H2 for x64-based Systems\", \"Windows 11 version 21H2 for ARM64-based Systems\", \"Windows 10 Version 21H2 for 32-bit Systems\", \"Windows 10 Version 21H2 for ARM64-based Systems\", \"Windows 10 Version 21H2 for x64-based Systems\", \"Windows 11 Version 22H2 for ARM64-based Systems\", \"Windows 11 Version 22H2 for x64-based Systems\", \"Windows 10 Version 22H2 for x64-based Systems\", \"Windows 10 Version 22H2 for ARM64-based Systems\", \"Windows 10 Version 22H2 for 32-bit Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft .NET Framework 2.0 Service Pack 2\", \"versions\": [{\"status\": \"affected\", \"version\": \"2.0.0\", \"lessThan\": \"3.0.6920.8954; 2.0.50727.8970\", \"versionType\": \"custom\"}], \"platforms\": [\"Windows Server 2008 for 32-bit Systems Service Pack 2\", \"Windows Server 2008 for x64-based Systems Service Pack 2\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft .NET Framework 3.0 Service Pack 2\", \"versions\": [{\"status\": \"affected\", \"version\": \"3.0.0\", \"lessThan\": \"3.0.6920.8954; 2.0.50727.8970\", \"versionType\": \"custom\"}], \"platforms\": [\"Windows Server 2008 for 32-bit Systems Service Pack 2\", \"Windows Server 2008 for x64-based Systems Service Pack 2\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft .NET Framework 3.5\", \"versions\": [{\"status\": \"affected\", \"version\": \"3.5.0\", \"lessThan\": \"3.0.6920.8954; 2.0.50727.8970\", \"versionType\": \"custom\"}], \"platforms\": [\"Windows Server 2012\", \"Windows Server 2012 (Server Core installation)\", \"Windows Server 2012 R2\", \"Windows Server 2012 R2 (Server Core installation)\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft .NET Framework 3.5.1\", \"versions\": [{\"status\": \"affected\", \"version\": \"3.5.0\", \"lessThan\": \"3.0.6920.8954; 2.0.50727.8970\", \"versionType\": \"custom\"}], \"platforms\": [\"Windows Server 2008 R2 for x64-based Systems Service Pack 1\", \"Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft .NET Framework 3.5 and 4.6.2\", \"versions\": [{\"status\": \"affected\", \"version\": \"4.7.0\", \"lessThan\": \"10.0.10240.19983\", \"versionType\": \"custom\"}], \"platforms\": [\"Windows 10 for 32-bit Systems\", \"Windows 10 for x64-based Systems\"]}], \"datePublic\": \"2023-06-13T07:00:00.000Z\", \"references\": [{\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29326\", \"name\": \".NET Framework Remote Code Execution Vulnerability\", \"tags\": [\"vendor-advisory\"]}], \"descriptions\": [{\"lang\": \"en-US\", \"value\": \".NET Framework Remote Code Execution Vulnerability\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en-US\", \"type\": \"Impact\", \"description\": \"Remote Code Execution\"}]}], \"cpeApplicability\": [{\"nodes\": [{\"negate\": false, \"cpeMatch\": [{\"criteria\": \"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"4.8.4644.0\", \"versionStartIncluding\": \"4.8.0\"}, {\"criteria\": \"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"4.7.4050.0\", \"versionStartIncluding\": \"4.7.0\"}, {\"criteria\": \"cpe:2.3:a:microsoft:.net_framework:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.14393.5989\", \"versionStartIncluding\": \"3.0.0.0\"}, {\"criteria\": \"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"4.8.9166.0\", \"versionStartIncluding\": \"4.8.1\"}, {\"criteria\": \"cpe:2.3:a:microsoft:.net:*:sp2:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"3.0.6920.8954; 2.0.50727.8970\", \"versionStartIncluding\": \"2.0.0\"}, {\"criteria\": \"cpe:2.3:a:microsoft:.net:*:sp2:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"3.0.6920.8954; 2.0.50727.8970\", \"versionStartIncluding\": \"3.0.0\"}, {\"criteria\": \"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"3.0.6920.8954; 2.0.50727.8970\", \"versionStartIncluding\": \"3.5.0\"}, {\"criteria\": \"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"3.0.6920.8954; 2.0.50727.8970\", \"versionStartIncluding\": \"3.5.0\"}, {\"criteria\": \"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.10240.19983\", \"versionStartIncluding\": \"4.7.0\"}], \"operator\": \"OR\"}]}], \"providerMetadata\": {\"orgId\": \"f38d906d-7342-40ea-92c1-6c4a2c6478c8\", \"shortName\": \"microsoft\", \"dateUpdated\": \"2025-01-01T01:43:34.168Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2023-29326\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-01-01T01:43:34.168Z\", \"dateReserved\": \"2023-04-04T22:34:18.378Z\", \"assignerOrgId\": \"f38d906d-7342-40ea-92c1-6c4a2c6478c8\", \"datePublished\": \"2023-06-14T14:52:11.778Z\", \"assignerShortName\": \"microsoft\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

GHSA-WHG9-W34Q-4QW6

Vulnerability from github – Published: 2023-06-14 15:30 – Updated: 2024-04-04 04:50

Details

.NET Framework Remote Code Execution Vulnerability

Severity ?

7.8 (High)


                  
                    CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2023-29326"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2023-06-14T15:15:09Z",
    "severity": "HIGH"
  },
  "details": ".NET Framework Remote Code Execution Vulnerability",
  "id": "GHSA-whg9-w34q-4qw6",
  "modified": "2024-04-04T04:50:06Z",
  "published": "2023-06-14T15:30:39Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29326"
    },
    {
      "type": "WEB",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29326"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

FKIE_CVE-2023-29326

Vulnerability from fkie_nvd - Published: 2023-06-14 15:15 - Updated: 2024-11-21 07:56

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Summary

.NET Framework Remote Code Execution Vulnerability

References

	URL	Tags
	secure@microsoft.com	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29326	Patch, Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29326	Patch, Vendor Advisory

Impacted products

Vendor	Product	Version
microsoft	.net_framework	3.5.1
microsoft	windows_server_2008	r2
microsoft	.net_framework	3.5
microsoft	.net_framework	4.6.2
microsoft	windows_10_1507	-
microsoft	windows_10_1507	-
microsoft	.net_framework	3.5
microsoft	.net_framework	4.8.1
microsoft	windows_10_1607	-
microsoft	windows_10_1607	-
microsoft	windows_10_21h2	-
microsoft	windows_10_21h2	-
microsoft	windows_10_21h2	-
microsoft	windows_10_22h2	-
microsoft	windows_10_22h2	-
microsoft	windows_10_22h2	-
microsoft	windows_11_21h2	-
microsoft	windows_11_21h2	-
microsoft	windows_11_22h2	-
microsoft	windows_11_22h2	-
microsoft	windows_server_2022	-
microsoft	.net_framework	3.5
microsoft	.net_framework	4.8
microsoft	windows_10_1607	-
microsoft	windows_10_1607	-
microsoft	windows_10_1809	-
microsoft	windows_10_1809	-
microsoft	windows_10_21h2	-
microsoft	windows_10_21h2	-
microsoft	windows_10_21h2	-
microsoft	windows_10_22h2	-
microsoft	windows_10_22h2	-
microsoft	windows_10_22h2	-
microsoft	windows_11_21h2	-
microsoft	windows_11_21h2	-
microsoft	windows_11_22h2	-
microsoft	windows_11_22h2	-
microsoft	windows_server_2019	-
microsoft	windows_server_2022	-
microsoft	.net_framework	3.5
microsoft	.net_framework	4.7.2
microsoft	windows_10_1809	-
microsoft	windows_10_1809	-
microsoft	windows_server_2019	-
microsoft	.net_framework	3.5
microsoft	.net_framework	4.6.2
microsoft	.net_framework	4.7
microsoft	.net_framework	4.7.1
microsoft	.net_framework	4.7.2
microsoft	windows_10_1607	-
microsoft	windows_10_1607	-
microsoft	windows_server_2016	-
microsoft	.net_framework	3.5
microsoft	windows_server_2012	-
microsoft	windows_server_2012	r2
microsoft	.net_framework	3.0
microsoft	windows_server_2008	-
microsoft	windows_server_2008	-
microsoft	.net_framework	2.0
microsoft	windows_server_2008	-
microsoft	windows_server_2008	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:3.5.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "8EDC4407-7E92-4E60-82F0-0C87D1860D3A",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*",
              "matchCriteriaId": "AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "E039CE1F-B988-4741-AE2E-5B36E2AF9688",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x64:*",
              "matchCriteriaId": "A045AC0A-471E-444C-B3B0-4CABC23E8CFB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x86:*",
              "matchCriteriaId": "28A7FEE9-B473-48A0-B0ED-A5CC1E44194C",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "E039CE1F-B988-4741-AE2E-5B36E2AF9688",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:4.8.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "934D4E46-12C1-41DC-A28C-A2C430E965E4",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*",
              "matchCriteriaId": "5E491E46-1917-41FE-8F9A-BB0BDDEB42C3",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*",
              "matchCriteriaId": "0A1BC97A-263E-4291-8AEF-02EE4E6031E9",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*",
              "matchCriteriaId": "8FC46499-DB6E-48BF-9334-85EE27AFE7AF",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*",
              "matchCriteriaId": "83A79DD6-E74E-419F-93F1-323B68502633",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*",
              "matchCriteriaId": "61959ACC-B608-4556-92AF-4D94B338907A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*",
              "matchCriteriaId": "A9D54EE6-30AF-411C-A285-A4DCB6C6EC06",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*",
              "matchCriteriaId": "C230D3BF-7FCE-405C-B62E-B9190C995C3C",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*",
              "matchCriteriaId": "1FD62DCB-66D1-4CEA-828E-0BD302AC63CA",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*",
              "matchCriteriaId": "F2D718BD-C4B7-48DB-BE78-B9CA22F27DD0",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*",
              "matchCriteriaId": "0C3552E0-F793-4CDD-965D-457495475805",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:*",
              "matchCriteriaId": "B2D24C54-F04F-4717-B614-FE67B3ED9DC0",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:*",
              "matchCriteriaId": "D5EC3F68-8F41-4F6B-B2E5-920322A4A321",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "821614DD-37DD-44E2-A8A4-FE8D23A33C3C",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "E039CE1F-B988-4741-AE2E-5B36E2AF9688",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "2D3F18AF-84ED-473B-A8DF-65EB23C475AF",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*",
              "matchCriteriaId": "5E491E46-1917-41FE-8F9A-BB0BDDEB42C3",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*",
              "matchCriteriaId": "0A1BC97A-263E-4291-8AEF-02EE4E6031E9",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*",
              "matchCriteriaId": "306B7CE6-8239-4AED-9ED4-4C9F5B349F58",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*",
              "matchCriteriaId": "345FCD64-D37B-425B-B64C-8B1640B7E850",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*",
              "matchCriteriaId": "8FC46499-DB6E-48BF-9334-85EE27AFE7AF",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*",
              "matchCriteriaId": "83A79DD6-E74E-419F-93F1-323B68502633",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*",
              "matchCriteriaId": "61959ACC-B608-4556-92AF-4D94B338907A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*",
              "matchCriteriaId": "A9D54EE6-30AF-411C-A285-A4DCB6C6EC06",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*",
              "matchCriteriaId": "C230D3BF-7FCE-405C-B62E-B9190C995C3C",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*",
              "matchCriteriaId": "1FD62DCB-66D1-4CEA-828E-0BD302AC63CA",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*",
              "matchCriteriaId": "F2D718BD-C4B7-48DB-BE78-B9CA22F27DD0",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*",
              "matchCriteriaId": "0C3552E0-F793-4CDD-965D-457495475805",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:*",
              "matchCriteriaId": "B2D24C54-F04F-4717-B614-FE67B3ED9DC0",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:*",
              "matchCriteriaId": "D5EC3F68-8F41-4F6B-B2E5-920322A4A321",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DB79EE26-FC32-417D-A49C-A1A63165A968",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "821614DD-37DD-44E2-A8A4-FE8D23A33C3C",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "E039CE1F-B988-4741-AE2E-5B36E2AF9688",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "3EF7A75E-EE27-4AA7-8D84-9D696728A4CE",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*",
              "matchCriteriaId": "306B7CE6-8239-4AED-9ED4-4C9F5B349F58",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*",
              "matchCriteriaId": "345FCD64-D37B-425B-B64C-8B1640B7E850",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DB79EE26-FC32-417D-A49C-A1A63165A968",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "E039CE1F-B988-4741-AE2E-5B36E2AF9688",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "734112B3-1383-4BE3-8721-C0F84566B764",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "36B0E40A-84EF-4099-A395-75D6B8CDA196",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "3EF7A75E-EE27-4AA7-8D84-9D696728A4CE",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*",
              "matchCriteriaId": "5E491E46-1917-41FE-8F9A-BB0BDDEB42C3",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*",
              "matchCriteriaId": "0A1BC97A-263E-4291-8AEF-02EE4E6031E9",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "E039CE1F-B988-4741-AE2E-5B36E2AF9688",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A7DF96F8-BA6A-4780-9CA3-F719B3F81074",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*",
              "matchCriteriaId": "DB18C4CE-5917-401E-ACF7-2747084FD36E",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:3.0:sp2:*:*:*:*:*:*",
              "matchCriteriaId": "D400E856-2B2E-4CEA-8CA5-309FDF371CEA",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*",
              "matchCriteriaId": "2127D10C-B6F3-4C1D-B9AA-5D78513CC996",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*",
              "matchCriteriaId": "AB425562-C0A0-452E-AABE-F70522F15E1A",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:*",
              "matchCriteriaId": "42A6DF09-B8E1-414D-97E7-453566055279",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*",
              "matchCriteriaId": "2127D10C-B6F3-4C1D-B9AA-5D78513CC996",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*",
              "matchCriteriaId": "AB425562-C0A0-452E-AABE-F70522F15E1A",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": ".NET Framework Remote Code Execution Vulnerability"
    }
  ],
  "id": "CVE-2023-29326",
  "lastModified": "2024-11-21T07:56:52.320",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "secure@microsoft.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2023-06-14T15:15:09.693",
  "references": [
    {
      "source": "secure@microsoft.com",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29326"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29326"
    }
  ],
  "sourceIdentifier": "secure@microsoft.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GSD-2023-29326

Vulnerability from gsd - Updated: 2023-12-13 01:20

Details

.NET Framework Remote Code Execution Vulnerability

Aliases

CVE-2023-29326

Aliases

CVE-2023-29326

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2023-29326",
    "id": "GSD-2023-29326"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2023-29326"
      ],
      "details": ".NET Framework Remote Code Execution Vulnerability",
      "id": "GSD-2023-29326",
      "modified": "2023-12-13T01:20:56.884433Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "secure@microsoft.com",
        "ID": "CVE-2023-29326",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Microsoft .NET Framework 3.5 AND 4.8",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "4.8.0",
                          "version_value": "4.8.4644.0"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Microsoft .NET Framework 3.5 AND 4.7.2",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "4.7.0",
                          "version_value": "4.7.4050.0"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "3.0.0.0",
                          "version_value": "10.0.14393.5989"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Microsoft .NET Framework 3.5 AND 4.8.1",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "4.8.1",
                          "version_value": "4.8.9166.0"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Microsoft .NET Framework 2.0 Service Pack 2",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "2.0.0",
                          "version_value": "3.0.6920.8954; 2.0.50727.8970"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Microsoft .NET Framework 3.0 Service Pack 2",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "3.0.0",
                          "version_value": "3.0.6920.8954; 2.0.50727.8970"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Microsoft .NET Framework 3.5",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "3.5.0",
                          "version_value": "3.0.6920.8954; 2.0.50727.8970"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Microsoft .NET Framework 3.5.1",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "3.5.0",
                          "version_value": "3.0.6920.8954; 2.0.50727.8970"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Microsoft .NET Framework 3.5 and 4.6.2",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "4.7.0",
                          "version_value": "10.0.10240.19983"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Microsoft"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": ".NET Framework Remote Code Execution Vulnerability"
          }
        ]
      },
      "impact": {
        "cvss": [
          {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
            "version": "3.1"
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "Remote Code Execution"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29326",
            "refsource": "MISC",
            "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29326"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:3.5.1:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x64:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x86:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.8.1:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:3.0:sp2:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "secure@microsoft.com",
          "ID": "CVE-2023-29326"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": ".NET Framework Remote Code Execution Vulnerability"
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-noinfo"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29326",
              "refsource": "MISC",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29326"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "exploitabilityScore": 1.8,
          "impactScore": 5.9
        }
      },
      "lastModifiedDate": "2023-06-22T20:09Z",
      "publishedDate": "2023-06-14T15:15Z"
    }
  }
}

CERTFR-2023-AVI-0463

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été corrigées dans Microsoft .Net. Elles permettent à un attaquant de provoquer un déni de service, une exécution de code à distance et une élévation de privilèges.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Microsoft	N/A	Microsoft .NET Framework 4.8
Microsoft	N/A	Microsoft .NET Framework 3.0 Service Pack 2
Microsoft	N/A	Microsoft .NET Framework 3.5
Microsoft	N/A	Microsoft .NET Framework 4.6.2
Microsoft	N/A	Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2
Microsoft	N/A	Microsoft .NET Framework 3.5 AND 4.8
Microsoft	N/A	Microsoft .NET Framework 3.5 AND 4.7.2
Microsoft	N/A	.NET 7.0
Microsoft	N/A	Microsoft .NET Framework 2.0 Service Pack 2
Microsoft	N/A	.NET 6.0
Microsoft	N/A	Microsoft .NET Framework 3.5 AND 4.8.1
Microsoft	N/A	Microsoft .NET Framework 3.5.1
Microsoft	N/A	Microsoft .NET Framework 3.5 and 4.6.2
Microsoft	N/A	Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2

References

Title

Publication Time

CERTFR-2023-AVI-0463

Vulnerability from certfr_avis - Published: - Updated:

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Microsoft	N/A	Microsoft .NET Framework 4.8
Microsoft	N/A	Microsoft .NET Framework 3.0 Service Pack 2
Microsoft	N/A	Microsoft .NET Framework 3.5
Microsoft	N/A	Microsoft .NET Framework 4.6.2
Microsoft	N/A	Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2
Microsoft	N/A	Microsoft .NET Framework 3.5 AND 4.8
Microsoft	N/A	Microsoft .NET Framework 3.5 AND 4.7.2
Microsoft	N/A	.NET 7.0
Microsoft	N/A	Microsoft .NET Framework 2.0 Service Pack 2
Microsoft	N/A	.NET 6.0
Microsoft	N/A	Microsoft .NET Framework 3.5 AND 4.8.1
Microsoft	N/A	Microsoft .NET Framework 3.5.1
Microsoft	N/A	Microsoft .NET Framework 3.5 and 4.6.2
Microsoft	N/A	Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2

References

Title

Publication Time

BDU:2023-03211

Vulnerability from fstec - Published: 13.06.2023

Title

Уязвимость программной платформы Microsoft .NET Framework, связанная с недостаточной проверкой входных данных, позволяющая нарушителю выполнить произвольный код

Description

Уязвимость программной платформы Microsoft .NET Framework связана с недостаточной проверкой входных данных. Эксплуатация уязвимости может позволить нарушителю выполнить произвольный код с помощью специально созданного файла

Severity ?


                    
                      AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vendor

Microsoft Corp

Software Name

Microsoft .NET Framework 3.5, Microsoft .NET Framework 3.5.1, Microsoft .NET Framework 4.7, Microsoft .NET Framework 4.6.2, Microsoft .NET Framework 4.7.1, Microsoft .NET Framework 4.7.2, Microsoft .NET Framework 4.8, Microsoft .NET Framework 4.8.1, Microsoft .NET Framework 2.0 Service Pack 2, Microsoft .NET Framework 3.0 Service Pack 2

Software Version

- (Microsoft .NET Framework 3.5), - (Microsoft .NET Framework 3.5.1), - (Microsoft .NET Framework 4.7), - (Microsoft .NET Framework 4.6.2), - (Microsoft .NET Framework 4.7.1), - (Microsoft .NET Framework 4.7.2), - (Microsoft .NET Framework 4.8), - (Microsoft .NET Framework 4.8.1), - (Microsoft .NET Framework 2.0 Service Pack 2), - (Microsoft .NET Framework 3.0 Service Pack 2)

Possible Mitigations

Использование рекомендаций: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29326

Reference

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29326 https://www.cybersecurity-help.cz/vdb/SB2023061412

CWE

CWE-20

JSON

To clipboard

{
  "CVSS 2.0": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
  "CVSS 3.0": "AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "TO278, TO279, TO280, TO281, TO282, TO283, TO284, TO285, TO362, TO363, TO365, TO367, TO397, TO399, TO402, TO436, TO438, TO410, TO459",
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": "TO278 \u041d\u0430\u043a\u043e\u043f\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 .NET Framework 3.5 \u0438 4.7.2 \u0434\u043b\u044f Windows 10 1809 \u0434\u043b\u044f x64 \u0441\u0438\u0441\u0442\u0435\u043c (KB5027131), TO279 \u041d\u0430\u043a\u043e\u043f\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 .NET Framework 3.5 \u0438 4.8 \u0434\u043b\u044f Windows 10 22H2 (KB5027122), TO280 \u041d\u0430\u043a\u043e\u043f\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 .NET Framework 3.5 \u0438 4.8 \u0434\u043b\u044f Windows 10 22H2 \u0434\u043b\u044f x64 \u0441\u0438\u0441\u0442\u0435\u043c (KB5027122), TO281 \u041d\u0430\u043a\u043e\u043f\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 .NET Framework 3.5 \u0438 4.8 \u0434\u043b\u044f Windows 10 1809 \u0434\u043b\u044f x64 \u0441\u0438\u0441\u0442\u0435\u043c (KB5027124), TO282 \u041d\u0430\u043a\u043e\u043f\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 .NET Framework 3.5 \u0438 4.8 \u0434\u043b\u044f Windows 11 \u0434\u043b\u044f x64 \u0441\u0438\u0441\u0442\u0435\u043c (KB5027125), TO283 \u041d\u0430\u043a\u043e\u043f\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 .NET Framework 3.5 \u0438 4.8.1 \u0434\u043b\u044f Windows 10 22H2 (KB5027117), TO284 \u041d\u0430\u043a\u043e\u043f\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 .NET Framework 3.5 \u0438 4.8.1 \u0434\u043b\u044f Windows 10 22H2 \u0434\u043b\u044f x64 \u0441\u0438\u0441\u0442\u0435\u043c (KB5027117), TO285 \u041d\u0430\u043a\u043e\u043f\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 .NET Framework 3.5 \u0438 4.8.1 \u0434\u043b\u044f Windows 11 \u0434\u043b\u044f x64 \u0441\u0438\u0441\u0442\u0435\u043c (KB5027118), TO362 \u041d\u0430\u043a\u043e\u043f\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 .NET Framework 3.5 \u0438 4.7.2 \u0434\u043b\u044f Windows Server 2019 \u0434\u043b\u044f x64 \u0441\u0438\u0441\u0442\u0435\u043c (KB5027131), TO363 \u041d\u0430\u043a\u043e\u043f\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 .NET Framework 3.5 \u0438 4.8 \u0434\u043b\u044f Windows Server 2022 (21H2) \u0434\u043b\u044f x64 \u0441\u0438\u0441\u0442\u0435\u043c (KB5027127), TO365 \u041d\u0430\u043a\u043e\u043f\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 .NET Framework 3.5 \u0438 4.8 \u0434\u043b\u044f Windows Server 2019 \u0434\u043b\u044f x64 \u0441\u0438\u0441\u0442\u0435\u043c (KB5027124), TO367 \u041d\u0430\u043a\u043e\u043f\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 .NET Framework 3.5 \u0438 4.8.1 \u0434\u043b\u044f Windows Server 2022 \u0434\u043b\u044f x64 \u0441\u0438\u0441\u0442\u0435\u043c (KB5027121), TO397 \u041d\u0430\u043a\u043e\u043f\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 .NET Framework 3.5 \u0438 4.7.2 \u0434\u043b\u044f Windows Server 2019 \u0434\u043b\u044f x64 \u0441\u0438\u0441\u0442\u0435\u043c (KB5027131), TO399 \u041d\u0430\u043a\u043e\u043f\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 .NET Framework 3.5 \u0438 4.8 \u0434\u043b\u044f Windows Server 2022 (22H2) \u0434\u043b\u044f x64 \u0441\u0438\u0441\u0442\u0435\u043c (KB5027127), TO402 \u041d\u0430\u043a\u043e\u043f\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 .NET Framework 3.5 \u0438 4.8 \u0434\u043b\u044f Windows Server 2019 \u0434\u043b\u044f x64 \u0441\u0438\u0441\u0442\u0435\u043c (KB5027124), TO436 \u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0434\u043b\u044f .NET Framework 3.5 \u0434\u043b\u044f Windows Server 2012 R2 \u0434\u043b\u044f x64 (KB5027116), TO438 \u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0434\u043b\u044f .NET Framework 3.5 \u0434\u043b\u044f Windows Server 2012 \u0434\u043b\u044f x64 (KB5027107), TO410 \u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043b\u044f .NET Framework 4.8 \u0432 Windows Server 2012 R2 \u0434\u043b\u044f x64 (KB5027141), TO459 \u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043b\u044f .NET Framework 3.5 \u0432 Windows Server 2012 R2 \u0434\u043b\u044f x64 (KB5027138)",
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Microsoft Corp",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "- (Microsoft .NET Framework 3.5), - (Microsoft .NET Framework 3.5.1), - (Microsoft .NET Framework 4.7), - (Microsoft .NET Framework 4.6.2), - (Microsoft .NET Framework 4.7.1), - (Microsoft .NET Framework 4.7.2), - (Microsoft .NET Framework 4.8), - (Microsoft .NET Framework 4.8.1), - (Microsoft .NET Framework 2.0 Service Pack 2), - (Microsoft .NET Framework 3.0 Service Pack 2)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\nhttps://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29326",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "13.06.2023",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "16.06.2023",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "16.06.2023",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2023-03211",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2023-29326",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Microsoft .NET Framework 3.5, Microsoft .NET Framework 3.5.1, Microsoft .NET Framework 4.7, Microsoft .NET Framework 4.6.2, Microsoft .NET Framework 4.7.1, Microsoft .NET Framework 4.7.2, Microsoft .NET Framework 4.8, Microsoft .NET Framework 4.8.1, Microsoft .NET Framework 2.0 Service Pack 2, Microsoft .NET Framework 3.0 Service Pack 2",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "Microsoft Corp Windows Server 2008 Service Pack 2 - 32-bit, Microsoft Corp Windows Server 2008 Service Pack 2 - 64-bit, Microsoft Corp Windows Server 2012 - , Microsoft Corp Windows Server 2012 R2 - , Microsoft Corp Windows Server 2008 R2 Service Pack 1 - 64-bit, Microsoft Corp Windows 10 - 64-bit, Microsoft Corp Windows 10 - 32-bit, Microsoft Corp Windows 10 1607 - 64-bit, Microsoft Corp Windows 10 1607 - 32-bit, Microsoft Corp Windows Server 2016 - , Microsoft Corp Windows Server 2012 R2 (Server Core installation) - , Microsoft Corp Windows Server 2016 (Server Core installation) - , Microsoft Corp Windows Server 2008 R2 Service Pack 1 (Server Core installation) - 64-bit, Microsoft Corp Windows 10 1809 - 64-bit, Microsoft Corp Windows 10 1809 - 32-bit, Microsoft Corp Windows Server 2019 - , Microsoft Corp Windows Server 2019 (Server Core installation) - , Microsoft Corp Windows 10 1809 - ARM64, Microsoft Corp Windows Server 2022 - , Microsoft Corp Windows Server 2022 (Server Core installation) - , Microsoft Corp Windows 10 21H2 - 64-bit, Microsoft Corp Windows 10 21H2 - 32-bit, Microsoft Corp Windows 10 21H2 - ARM64, Microsoft Corp Windows 11 22H2 - 64-bit, Microsoft Corp Windows 11 22H2 - ARM64, Microsoft Corp Windows 10 22H2 - 64-bit, Microsoft Corp Windows 10 22H2 - ARM64, Microsoft Corp Windows 10 22H2 - 32-bit, Microsoft Corp Windows 11 21H2 - 64-bit, Microsoft Corp Windows 11 21H2 - ARM64, Microsoft Corp Windows Server 2012 (Server Core installation) - ",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b Microsoft .NET Framework, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u043e\u0439 \u0432\u0445\u043e\u0434\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u0430\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0430 \u0432\u0432\u043e\u0434\u0438\u043c\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 (CWE-20)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b Microsoft .NET Framework \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u043e\u0439 \u0432\u0445\u043e\u0434\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434 \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u043e\u0437\u0434\u0430\u043d\u043d\u043e\u0433\u043e \u0444\u0430\u0439\u043b\u0430",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u0441\u0443\u0440\u0441\u0430\u043c\u0438",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29326\nhttps://www.cybersecurity-help.cz/vdb/SB2023061412",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041f\u0440\u0438\u043a\u043b\u0430\u0434\u043d\u043e\u0435 \u041f\u041e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-20",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,2)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,8)"
}

WID-SEC-W-2023-1446

Vulnerability from csaf_certbund - Published: 2023-06-13 22:00 - Updated: 2023-09-25 22:00

Summary

Microsoft Developer Tools: Mehrere Schwachstellen

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Microsoft .NET Framework ist eine Komponente des Microsoft Windows-Betriebssystems, das die Erstellung und Ausführung von Softwareanwendungen und Webdiensten ermöglicht. Es beinhaltet sowohl eine Laufzeitumgebung als auch ein Framework von Klassenbibliotheken (APIs), u. a. für die Programmiersprache ASP (ASP.NET), den Datenzugriff (ADO.NET), intelligente Clientanwendungen (Windows Forms) und weitere. Microsoft Azure DevOps Server ist eine Plattform für kollaborative Softwareprojekte. NuGet ist ein Programm für die Verteilung von Software. Microsoft Visual Studio ist eine integrierte Entwicklungsumgebung für Hochsprachen. Visual Studio Code ist ein Quelltext-Editor von Microsoft.

Angriff: Ein entfernter, anonymer, authentisierter oder lokaler Angreifer kann mehrere Schwachstellen in Microsoft .NET Framework, Microsoft Azure DevOps Server, Microsoft NuGet, Microsoft Visual Studio und Microsoft Visual Studio Code ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren.

Betroffene Betriebssysteme: - Linux - MacOS X - Windows

CVE-2023-33144

Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Pufferüberläufe, unsachgemäße Eingabeüberprüfungen und unzureichende Überprüfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten gehören unter anderem AutoDesk und GitHub für Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion.

Affected products

Known affected 31 products

Product	Identifier	Version
Microsoft .NET Framework 4.7.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.1`	—
Microsoft .NET Framework 4.7.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.2`	—
Microsoft NuGet 6.5.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.5.0`	—
Microsoft .NET Framework 4.7 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Microsoft .NET Framework 4.8 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8`	—
Microsoft Visual Studio 2015 Update 3 Microsoft	`cpe:/a:microsoft:visual_studio_2015:update_3`	—
Microsoft Visual Studio 2017 version 15.9 Microsoft	`cpe:/a:microsoft:visual_studio_2017:version_15.9`	—
Microsoft Visual Studio 2013 Update 5 Microsoft	`cpe:/a:microsoft:visual_studio_2013:update_5`	—
Microsoft .NET Framework 3.5.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5.1`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Hitachi Storage Virtual Storage Platform Hitachi	`cpe:/h:hitachi:storage:virtual_storage_platform`	—
Microsoft .NET Framework 2.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:2.0_sp2`	—
Microsoft Azure DevOps Server 2020.1.2 Microsoft	`cpe:/o:microsoft:azure_devops_server:2020.1.2:-`	—
Microsoft .NET Framework 3.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.0_sp2`	—
Microsoft Visual Studio 2019 version 16.11 Microsoft	`cpe:/a:microsoft:visual_studio_2019:version_16.11`	—
Microsoft Visual Studio 2022 version 17.6 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.6`	—
Microsoft Visual Studio 2022 version 17.4 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.4`	—
Microsoft Visual Studio 2022 version 17.5 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.5`	—
Microsoft NuGet 6.6.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.6.0`	—
Microsoft Visual Studio 2022 version 17.2 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.2`	—
Microsoft NuGet 6.4.1 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.4.1`	—
Microsoft NuGet 6.2.3 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.2.3`	—
Microsoft NuGet 6.3.2 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.3.2`	—
Microsoft NuGet 6.0.4 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.0.4`	—
Microsoft .NET Framework 3.5 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5:-`	—
Microsoft .NET Framework 4.6.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.6.2`	—
Microsoft Visual Studio Code Microsoft	`cpe:/a:microsoft:visual_studio_code:-`	—
Microsoft .NET Framework 4.8.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8.1`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Microsoft Visual Studio 2022 version 17.0 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.0`	—

CVE-2023-33141

Affected products

Known affected 31 products

Product	Identifier	Version
Microsoft .NET Framework 4.7.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.1`	—
Microsoft .NET Framework 4.7.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.2`	—
Microsoft NuGet 6.5.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.5.0`	—
Microsoft .NET Framework 4.7 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Microsoft .NET Framework 4.8 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8`	—
Microsoft Visual Studio 2015 Update 3 Microsoft	`cpe:/a:microsoft:visual_studio_2015:update_3`	—
Microsoft Visual Studio 2017 version 15.9 Microsoft	`cpe:/a:microsoft:visual_studio_2017:version_15.9`	—
Microsoft Visual Studio 2013 Update 5 Microsoft	`cpe:/a:microsoft:visual_studio_2013:update_5`	—
Microsoft .NET Framework 3.5.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5.1`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Hitachi Storage Virtual Storage Platform Hitachi	`cpe:/h:hitachi:storage:virtual_storage_platform`	—
Microsoft .NET Framework 2.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:2.0_sp2`	—
Microsoft Azure DevOps Server 2020.1.2 Microsoft	`cpe:/o:microsoft:azure_devops_server:2020.1.2:-`	—
Microsoft .NET Framework 3.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.0_sp2`	—
Microsoft Visual Studio 2019 version 16.11 Microsoft	`cpe:/a:microsoft:visual_studio_2019:version_16.11`	—
Microsoft Visual Studio 2022 version 17.6 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.6`	—
Microsoft Visual Studio 2022 version 17.4 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.4`	—
Microsoft Visual Studio 2022 version 17.5 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.5`	—
Microsoft NuGet 6.6.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.6.0`	—
Microsoft Visual Studio 2022 version 17.2 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.2`	—
Microsoft NuGet 6.4.1 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.4.1`	—
Microsoft NuGet 6.2.3 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.2.3`	—
Microsoft NuGet 6.3.2 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.3.2`	—
Microsoft NuGet 6.0.4 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.0.4`	—
Microsoft .NET Framework 3.5 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5:-`	—
Microsoft .NET Framework 4.6.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.6.2`	—
Microsoft Visual Studio Code Microsoft	`cpe:/a:microsoft:visual_studio_code:-`	—
Microsoft .NET Framework 4.8.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8.1`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Microsoft Visual Studio 2022 version 17.0 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.0`	—

CVE-2023-33139

Affected products

Known affected 31 products

Product	Identifier	Version
Microsoft .NET Framework 4.7.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.1`	—
Microsoft .NET Framework 4.7.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.2`	—
Microsoft NuGet 6.5.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.5.0`	—
Microsoft .NET Framework 4.7 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Microsoft .NET Framework 4.8 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8`	—
Microsoft Visual Studio 2015 Update 3 Microsoft	`cpe:/a:microsoft:visual_studio_2015:update_3`	—
Microsoft Visual Studio 2017 version 15.9 Microsoft	`cpe:/a:microsoft:visual_studio_2017:version_15.9`	—
Microsoft Visual Studio 2013 Update 5 Microsoft	`cpe:/a:microsoft:visual_studio_2013:update_5`	—
Microsoft .NET Framework 3.5.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5.1`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Hitachi Storage Virtual Storage Platform Hitachi	`cpe:/h:hitachi:storage:virtual_storage_platform`	—
Microsoft .NET Framework 2.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:2.0_sp2`	—
Microsoft Azure DevOps Server 2020.1.2 Microsoft	`cpe:/o:microsoft:azure_devops_server:2020.1.2:-`	—
Microsoft .NET Framework 3.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.0_sp2`	—
Microsoft Visual Studio 2019 version 16.11 Microsoft	`cpe:/a:microsoft:visual_studio_2019:version_16.11`	—
Microsoft Visual Studio 2022 version 17.6 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.6`	—
Microsoft Visual Studio 2022 version 17.4 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.4`	—
Microsoft Visual Studio 2022 version 17.5 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.5`	—
Microsoft NuGet 6.6.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.6.0`	—
Microsoft Visual Studio 2022 version 17.2 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.2`	—
Microsoft NuGet 6.4.1 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.4.1`	—
Microsoft NuGet 6.2.3 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.2.3`	—
Microsoft NuGet 6.3.2 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.3.2`	—
Microsoft NuGet 6.0.4 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.0.4`	—
Microsoft .NET Framework 3.5 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5:-`	—
Microsoft .NET Framework 4.6.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.6.2`	—
Microsoft Visual Studio Code Microsoft	`cpe:/a:microsoft:visual_studio_code:-`	—
Microsoft .NET Framework 4.8.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8.1`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Microsoft Visual Studio 2022 version 17.0 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.0`	—

CVE-2023-33135

Affected products

Known affected 31 products

Product	Identifier	Version
Microsoft .NET Framework 4.7.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.1`	—
Microsoft .NET Framework 4.7.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.2`	—
Microsoft NuGet 6.5.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.5.0`	—
Microsoft .NET Framework 4.7 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Microsoft .NET Framework 4.8 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8`	—
Microsoft Visual Studio 2015 Update 3 Microsoft	`cpe:/a:microsoft:visual_studio_2015:update_3`	—
Microsoft Visual Studio 2017 version 15.9 Microsoft	`cpe:/a:microsoft:visual_studio_2017:version_15.9`	—
Microsoft Visual Studio 2013 Update 5 Microsoft	`cpe:/a:microsoft:visual_studio_2013:update_5`	—
Microsoft .NET Framework 3.5.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5.1`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Hitachi Storage Virtual Storage Platform Hitachi	`cpe:/h:hitachi:storage:virtual_storage_platform`	—
Microsoft .NET Framework 2.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:2.0_sp2`	—
Microsoft Azure DevOps Server 2020.1.2 Microsoft	`cpe:/o:microsoft:azure_devops_server:2020.1.2:-`	—
Microsoft .NET Framework 3.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.0_sp2`	—
Microsoft Visual Studio 2019 version 16.11 Microsoft	`cpe:/a:microsoft:visual_studio_2019:version_16.11`	—
Microsoft Visual Studio 2022 version 17.6 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.6`	—
Microsoft Visual Studio 2022 version 17.4 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.4`	—
Microsoft Visual Studio 2022 version 17.5 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.5`	—
Microsoft NuGet 6.6.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.6.0`	—
Microsoft Visual Studio 2022 version 17.2 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.2`	—
Microsoft NuGet 6.4.1 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.4.1`	—
Microsoft NuGet 6.2.3 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.2.3`	—
Microsoft NuGet 6.3.2 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.3.2`	—
Microsoft NuGet 6.0.4 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.0.4`	—
Microsoft .NET Framework 3.5 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5:-`	—
Microsoft .NET Framework 4.6.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.6.2`	—
Microsoft Visual Studio Code Microsoft	`cpe:/a:microsoft:visual_studio_code:-`	—
Microsoft .NET Framework 4.8.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8.1`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Microsoft Visual Studio 2022 version 17.0 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.0`	—

CVE-2023-33128

Affected products

Known affected 31 products

Product	Identifier	Version
Microsoft .NET Framework 4.7.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.1`	—
Microsoft .NET Framework 4.7.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.2`	—
Microsoft NuGet 6.5.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.5.0`	—
Microsoft .NET Framework 4.7 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Microsoft .NET Framework 4.8 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8`	—
Microsoft Visual Studio 2015 Update 3 Microsoft	`cpe:/a:microsoft:visual_studio_2015:update_3`	—
Microsoft Visual Studio 2017 version 15.9 Microsoft	`cpe:/a:microsoft:visual_studio_2017:version_15.9`	—
Microsoft Visual Studio 2013 Update 5 Microsoft	`cpe:/a:microsoft:visual_studio_2013:update_5`	—
Microsoft .NET Framework 3.5.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5.1`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Hitachi Storage Virtual Storage Platform Hitachi	`cpe:/h:hitachi:storage:virtual_storage_platform`	—
Microsoft .NET Framework 2.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:2.0_sp2`	—
Microsoft Azure DevOps Server 2020.1.2 Microsoft	`cpe:/o:microsoft:azure_devops_server:2020.1.2:-`	—
Microsoft .NET Framework 3.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.0_sp2`	—
Microsoft Visual Studio 2019 version 16.11 Microsoft	`cpe:/a:microsoft:visual_studio_2019:version_16.11`	—
Microsoft Visual Studio 2022 version 17.6 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.6`	—
Microsoft Visual Studio 2022 version 17.4 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.4`	—
Microsoft Visual Studio 2022 version 17.5 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.5`	—
Microsoft NuGet 6.6.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.6.0`	—
Microsoft Visual Studio 2022 version 17.2 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.2`	—
Microsoft NuGet 6.4.1 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.4.1`	—
Microsoft NuGet 6.2.3 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.2.3`	—
Microsoft NuGet 6.3.2 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.3.2`	—
Microsoft NuGet 6.0.4 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.0.4`	—
Microsoft .NET Framework 3.5 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5:-`	—
Microsoft .NET Framework 4.6.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.6.2`	—
Microsoft Visual Studio Code Microsoft	`cpe:/a:microsoft:visual_studio_code:-`	—
Microsoft .NET Framework 4.8.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8.1`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Microsoft Visual Studio 2022 version 17.0 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.0`	—

CVE-2023-33126

Affected products

Known affected 31 products

Product	Identifier	Version
Microsoft .NET Framework 4.7.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.1`	—
Microsoft .NET Framework 4.7.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.2`	—
Microsoft NuGet 6.5.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.5.0`	—
Microsoft .NET Framework 4.7 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Microsoft .NET Framework 4.8 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8`	—
Microsoft Visual Studio 2015 Update 3 Microsoft	`cpe:/a:microsoft:visual_studio_2015:update_3`	—
Microsoft Visual Studio 2017 version 15.9 Microsoft	`cpe:/a:microsoft:visual_studio_2017:version_15.9`	—
Microsoft Visual Studio 2013 Update 5 Microsoft	`cpe:/a:microsoft:visual_studio_2013:update_5`	—
Microsoft .NET Framework 3.5.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5.1`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Hitachi Storage Virtual Storage Platform Hitachi	`cpe:/h:hitachi:storage:virtual_storage_platform`	—
Microsoft .NET Framework 2.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:2.0_sp2`	—
Microsoft Azure DevOps Server 2020.1.2 Microsoft	`cpe:/o:microsoft:azure_devops_server:2020.1.2:-`	—
Microsoft .NET Framework 3.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.0_sp2`	—
Microsoft Visual Studio 2019 version 16.11 Microsoft	`cpe:/a:microsoft:visual_studio_2019:version_16.11`	—
Microsoft Visual Studio 2022 version 17.6 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.6`	—
Microsoft Visual Studio 2022 version 17.4 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.4`	—
Microsoft Visual Studio 2022 version 17.5 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.5`	—
Microsoft NuGet 6.6.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.6.0`	—
Microsoft Visual Studio 2022 version 17.2 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.2`	—
Microsoft NuGet 6.4.1 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.4.1`	—
Microsoft NuGet 6.2.3 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.2.3`	—
Microsoft NuGet 6.3.2 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.3.2`	—
Microsoft NuGet 6.0.4 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.0.4`	—
Microsoft .NET Framework 3.5 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5:-`	—
Microsoft .NET Framework 4.6.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.6.2`	—
Microsoft Visual Studio Code Microsoft	`cpe:/a:microsoft:visual_studio_code:-`	—
Microsoft .NET Framework 4.8.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8.1`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Microsoft Visual Studio 2022 version 17.0 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.0`	—

CVE-2023-32032

Affected products

Known affected 31 products

Product	Identifier	Version
Microsoft .NET Framework 4.7.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.1`	—
Microsoft .NET Framework 4.7.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.2`	—
Microsoft NuGet 6.5.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.5.0`	—
Microsoft .NET Framework 4.7 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Microsoft .NET Framework 4.8 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8`	—
Microsoft Visual Studio 2015 Update 3 Microsoft	`cpe:/a:microsoft:visual_studio_2015:update_3`	—
Microsoft Visual Studio 2017 version 15.9 Microsoft	`cpe:/a:microsoft:visual_studio_2017:version_15.9`	—
Microsoft Visual Studio 2013 Update 5 Microsoft	`cpe:/a:microsoft:visual_studio_2013:update_5`	—
Microsoft .NET Framework 3.5.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5.1`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Hitachi Storage Virtual Storage Platform Hitachi	`cpe:/h:hitachi:storage:virtual_storage_platform`	—
Microsoft .NET Framework 2.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:2.0_sp2`	—
Microsoft Azure DevOps Server 2020.1.2 Microsoft	`cpe:/o:microsoft:azure_devops_server:2020.1.2:-`	—
Microsoft .NET Framework 3.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.0_sp2`	—
Microsoft Visual Studio 2019 version 16.11 Microsoft	`cpe:/a:microsoft:visual_studio_2019:version_16.11`	—
Microsoft Visual Studio 2022 version 17.6 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.6`	—
Microsoft Visual Studio 2022 version 17.4 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.4`	—
Microsoft Visual Studio 2022 version 17.5 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.5`	—
Microsoft NuGet 6.6.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.6.0`	—
Microsoft Visual Studio 2022 version 17.2 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.2`	—
Microsoft NuGet 6.4.1 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.4.1`	—
Microsoft NuGet 6.2.3 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.2.3`	—
Microsoft NuGet 6.3.2 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.3.2`	—
Microsoft NuGet 6.0.4 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.0.4`	—
Microsoft .NET Framework 3.5 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5:-`	—
Microsoft .NET Framework 4.6.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.6.2`	—
Microsoft Visual Studio Code Microsoft	`cpe:/a:microsoft:visual_studio_code:-`	—
Microsoft .NET Framework 4.8.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8.1`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Microsoft Visual Studio 2022 version 17.0 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.0`	—

CVE-2023-32030

Affected products

Known affected 31 products

Product	Identifier	Version
Microsoft .NET Framework 4.7.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.1`	—
Microsoft .NET Framework 4.7.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.2`	—
Microsoft NuGet 6.5.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.5.0`	—
Microsoft .NET Framework 4.7 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Microsoft .NET Framework 4.8 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8`	—
Microsoft Visual Studio 2015 Update 3 Microsoft	`cpe:/a:microsoft:visual_studio_2015:update_3`	—
Microsoft Visual Studio 2017 version 15.9 Microsoft	`cpe:/a:microsoft:visual_studio_2017:version_15.9`	—
Microsoft Visual Studio 2013 Update 5 Microsoft	`cpe:/a:microsoft:visual_studio_2013:update_5`	—
Microsoft .NET Framework 3.5.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5.1`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Hitachi Storage Virtual Storage Platform Hitachi	`cpe:/h:hitachi:storage:virtual_storage_platform`	—
Microsoft .NET Framework 2.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:2.0_sp2`	—
Microsoft Azure DevOps Server 2020.1.2 Microsoft	`cpe:/o:microsoft:azure_devops_server:2020.1.2:-`	—
Microsoft .NET Framework 3.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.0_sp2`	—
Microsoft Visual Studio 2019 version 16.11 Microsoft	`cpe:/a:microsoft:visual_studio_2019:version_16.11`	—
Microsoft Visual Studio 2022 version 17.6 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.6`	—
Microsoft Visual Studio 2022 version 17.4 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.4`	—
Microsoft Visual Studio 2022 version 17.5 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.5`	—
Microsoft NuGet 6.6.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.6.0`	—
Microsoft Visual Studio 2022 version 17.2 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.2`	—
Microsoft NuGet 6.4.1 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.4.1`	—
Microsoft NuGet 6.2.3 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.2.3`	—
Microsoft NuGet 6.3.2 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.3.2`	—
Microsoft NuGet 6.0.4 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.0.4`	—
Microsoft .NET Framework 3.5 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5:-`	—
Microsoft .NET Framework 4.6.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.6.2`	—
Microsoft Visual Studio Code Microsoft	`cpe:/a:microsoft:visual_studio_code:-`	—
Microsoft .NET Framework 4.8.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8.1`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Microsoft Visual Studio 2022 version 17.0 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.0`	—

CVE-2023-29353

Affected products

Known affected 31 products

Product	Identifier	Version
Microsoft .NET Framework 4.7.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.1`	—
Microsoft .NET Framework 4.7.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.2`	—
Microsoft NuGet 6.5.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.5.0`	—
Microsoft .NET Framework 4.7 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Microsoft .NET Framework 4.8 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8`	—
Microsoft Visual Studio 2015 Update 3 Microsoft	`cpe:/a:microsoft:visual_studio_2015:update_3`	—
Microsoft Visual Studio 2017 version 15.9 Microsoft	`cpe:/a:microsoft:visual_studio_2017:version_15.9`	—
Microsoft Visual Studio 2013 Update 5 Microsoft	`cpe:/a:microsoft:visual_studio_2013:update_5`	—
Microsoft .NET Framework 3.5.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5.1`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Hitachi Storage Virtual Storage Platform Hitachi	`cpe:/h:hitachi:storage:virtual_storage_platform`	—
Microsoft .NET Framework 2.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:2.0_sp2`	—
Microsoft Azure DevOps Server 2020.1.2 Microsoft	`cpe:/o:microsoft:azure_devops_server:2020.1.2:-`	—
Microsoft .NET Framework 3.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.0_sp2`	—
Microsoft Visual Studio 2019 version 16.11 Microsoft	`cpe:/a:microsoft:visual_studio_2019:version_16.11`	—
Microsoft Visual Studio 2022 version 17.6 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.6`	—
Microsoft Visual Studio 2022 version 17.4 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.4`	—
Microsoft Visual Studio 2022 version 17.5 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.5`	—
Microsoft NuGet 6.6.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.6.0`	—
Microsoft Visual Studio 2022 version 17.2 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.2`	—
Microsoft NuGet 6.4.1 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.4.1`	—
Microsoft NuGet 6.2.3 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.2.3`	—
Microsoft NuGet 6.3.2 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.3.2`	—
Microsoft NuGet 6.0.4 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.0.4`	—
Microsoft .NET Framework 3.5 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5:-`	—
Microsoft .NET Framework 4.6.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.6.2`	—
Microsoft Visual Studio Code Microsoft	`cpe:/a:microsoft:visual_studio_code:-`	—
Microsoft .NET Framework 4.8.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8.1`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Microsoft Visual Studio 2022 version 17.0 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.0`	—

CVE-2023-29337

Affected products

Known affected 31 products

Product	Identifier	Version
Microsoft .NET Framework 4.7.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.1`	—
Microsoft .NET Framework 4.7.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.2`	—
Microsoft NuGet 6.5.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.5.0`	—
Microsoft .NET Framework 4.7 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Microsoft .NET Framework 4.8 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8`	—
Microsoft Visual Studio 2015 Update 3 Microsoft	`cpe:/a:microsoft:visual_studio_2015:update_3`	—
Microsoft Visual Studio 2017 version 15.9 Microsoft	`cpe:/a:microsoft:visual_studio_2017:version_15.9`	—
Microsoft Visual Studio 2013 Update 5 Microsoft	`cpe:/a:microsoft:visual_studio_2013:update_5`	—
Microsoft .NET Framework 3.5.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5.1`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Hitachi Storage Virtual Storage Platform Hitachi	`cpe:/h:hitachi:storage:virtual_storage_platform`	—
Microsoft .NET Framework 2.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:2.0_sp2`	—
Microsoft Azure DevOps Server 2020.1.2 Microsoft	`cpe:/o:microsoft:azure_devops_server:2020.1.2:-`	—
Microsoft .NET Framework 3.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.0_sp2`	—
Microsoft Visual Studio 2019 version 16.11 Microsoft	`cpe:/a:microsoft:visual_studio_2019:version_16.11`	—
Microsoft Visual Studio 2022 version 17.6 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.6`	—
Microsoft Visual Studio 2022 version 17.4 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.4`	—
Microsoft Visual Studio 2022 version 17.5 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.5`	—
Microsoft NuGet 6.6.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.6.0`	—
Microsoft Visual Studio 2022 version 17.2 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.2`	—
Microsoft NuGet 6.4.1 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.4.1`	—
Microsoft NuGet 6.2.3 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.2.3`	—
Microsoft NuGet 6.3.2 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.3.2`	—
Microsoft NuGet 6.0.4 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.0.4`	—
Microsoft .NET Framework 3.5 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5:-`	—
Microsoft .NET Framework 4.6.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.6.2`	—
Microsoft Visual Studio Code Microsoft	`cpe:/a:microsoft:visual_studio_code:-`	—
Microsoft .NET Framework 4.8.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8.1`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Microsoft Visual Studio 2022 version 17.0 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.0`	—

CVE-2023-29331

Affected products

Known affected 31 products

Product	Identifier	Version
Microsoft .NET Framework 4.7.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.1`	—
Microsoft .NET Framework 4.7.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.2`	—
Microsoft NuGet 6.5.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.5.0`	—
Microsoft .NET Framework 4.7 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Microsoft .NET Framework 4.8 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8`	—
Microsoft Visual Studio 2015 Update 3 Microsoft	`cpe:/a:microsoft:visual_studio_2015:update_3`	—
Microsoft Visual Studio 2017 version 15.9 Microsoft	`cpe:/a:microsoft:visual_studio_2017:version_15.9`	—
Microsoft Visual Studio 2013 Update 5 Microsoft	`cpe:/a:microsoft:visual_studio_2013:update_5`	—
Microsoft .NET Framework 3.5.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5.1`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Hitachi Storage Virtual Storage Platform Hitachi	`cpe:/h:hitachi:storage:virtual_storage_platform`	—
Microsoft .NET Framework 2.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:2.0_sp2`	—
Microsoft Azure DevOps Server 2020.1.2 Microsoft	`cpe:/o:microsoft:azure_devops_server:2020.1.2:-`	—
Microsoft .NET Framework 3.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.0_sp2`	—
Microsoft Visual Studio 2019 version 16.11 Microsoft	`cpe:/a:microsoft:visual_studio_2019:version_16.11`	—
Microsoft Visual Studio 2022 version 17.6 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.6`	—
Microsoft Visual Studio 2022 version 17.4 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.4`	—
Microsoft Visual Studio 2022 version 17.5 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.5`	—
Microsoft NuGet 6.6.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.6.0`	—
Microsoft Visual Studio 2022 version 17.2 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.2`	—
Microsoft NuGet 6.4.1 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.4.1`	—
Microsoft NuGet 6.2.3 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.2.3`	—
Microsoft NuGet 6.3.2 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.3.2`	—
Microsoft NuGet 6.0.4 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.0.4`	—
Microsoft .NET Framework 3.5 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5:-`	—
Microsoft .NET Framework 4.6.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.6.2`	—
Microsoft Visual Studio Code Microsoft	`cpe:/a:microsoft:visual_studio_code:-`	—
Microsoft .NET Framework 4.8.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8.1`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Microsoft Visual Studio 2022 version 17.0 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.0`	—

CVE-2023-29326

Affected products

Known affected 31 products

Product	Identifier	Version
Microsoft .NET Framework 4.7.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.1`	—
Microsoft .NET Framework 4.7.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.2`	—
Microsoft NuGet 6.5.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.5.0`	—
Microsoft .NET Framework 4.7 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Microsoft .NET Framework 4.8 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8`	—
Microsoft Visual Studio 2015 Update 3 Microsoft	`cpe:/a:microsoft:visual_studio_2015:update_3`	—
Microsoft Visual Studio 2017 version 15.9 Microsoft	`cpe:/a:microsoft:visual_studio_2017:version_15.9`	—
Microsoft Visual Studio 2013 Update 5 Microsoft	`cpe:/a:microsoft:visual_studio_2013:update_5`	—
Microsoft .NET Framework 3.5.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5.1`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Hitachi Storage Virtual Storage Platform Hitachi	`cpe:/h:hitachi:storage:virtual_storage_platform`	—
Microsoft .NET Framework 2.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:2.0_sp2`	—
Microsoft Azure DevOps Server 2020.1.2 Microsoft	`cpe:/o:microsoft:azure_devops_server:2020.1.2:-`	—
Microsoft .NET Framework 3.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.0_sp2`	—
Microsoft Visual Studio 2019 version 16.11 Microsoft	`cpe:/a:microsoft:visual_studio_2019:version_16.11`	—
Microsoft Visual Studio 2022 version 17.6 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.6`	—
Microsoft Visual Studio 2022 version 17.4 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.4`	—
Microsoft Visual Studio 2022 version 17.5 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.5`	—
Microsoft NuGet 6.6.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.6.0`	—
Microsoft Visual Studio 2022 version 17.2 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.2`	—
Microsoft NuGet 6.4.1 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.4.1`	—
Microsoft NuGet 6.2.3 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.2.3`	—
Microsoft NuGet 6.3.2 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.3.2`	—
Microsoft NuGet 6.0.4 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.0.4`	—
Microsoft .NET Framework 3.5 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5:-`	—
Microsoft .NET Framework 4.6.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.6.2`	—
Microsoft Visual Studio Code Microsoft	`cpe:/a:microsoft:visual_studio_code:-`	—
Microsoft .NET Framework 4.8.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8.1`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Microsoft Visual Studio 2022 version 17.0 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.0`	—

CVE-2023-29012

Affected products

Known affected 31 products

Product	Identifier	Version
Microsoft .NET Framework 4.7.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.1`	—
Microsoft .NET Framework 4.7.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.2`	—
Microsoft NuGet 6.5.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.5.0`	—
Microsoft .NET Framework 4.7 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Microsoft .NET Framework 4.8 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8`	—
Microsoft Visual Studio 2015 Update 3 Microsoft	`cpe:/a:microsoft:visual_studio_2015:update_3`	—
Microsoft Visual Studio 2017 version 15.9 Microsoft	`cpe:/a:microsoft:visual_studio_2017:version_15.9`	—
Microsoft Visual Studio 2013 Update 5 Microsoft	`cpe:/a:microsoft:visual_studio_2013:update_5`	—
Microsoft .NET Framework 3.5.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5.1`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Hitachi Storage Virtual Storage Platform Hitachi	`cpe:/h:hitachi:storage:virtual_storage_platform`	—
Microsoft .NET Framework 2.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:2.0_sp2`	—
Microsoft Azure DevOps Server 2020.1.2 Microsoft	`cpe:/o:microsoft:azure_devops_server:2020.1.2:-`	—
Microsoft .NET Framework 3.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.0_sp2`	—
Microsoft Visual Studio 2019 version 16.11 Microsoft	`cpe:/a:microsoft:visual_studio_2019:version_16.11`	—
Microsoft Visual Studio 2022 version 17.6 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.6`	—
Microsoft Visual Studio 2022 version 17.4 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.4`	—
Microsoft Visual Studio 2022 version 17.5 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.5`	—
Microsoft NuGet 6.6.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.6.0`	—
Microsoft Visual Studio 2022 version 17.2 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.2`	—
Microsoft NuGet 6.4.1 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.4.1`	—
Microsoft NuGet 6.2.3 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.2.3`	—
Microsoft NuGet 6.3.2 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.3.2`	—
Microsoft NuGet 6.0.4 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.0.4`	—
Microsoft .NET Framework 3.5 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5:-`	—
Microsoft .NET Framework 4.6.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.6.2`	—
Microsoft Visual Studio Code Microsoft	`cpe:/a:microsoft:visual_studio_code:-`	—
Microsoft .NET Framework 4.8.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8.1`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Microsoft Visual Studio 2022 version 17.0 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.0`	—

CVE-2023-29011

Affected products

Known affected 31 products

Product	Identifier	Version
Microsoft .NET Framework 4.7.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.1`	—
Microsoft .NET Framework 4.7.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.2`	—
Microsoft NuGet 6.5.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.5.0`	—
Microsoft .NET Framework 4.7 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Microsoft .NET Framework 4.8 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8`	—
Microsoft Visual Studio 2015 Update 3 Microsoft	`cpe:/a:microsoft:visual_studio_2015:update_3`	—
Microsoft Visual Studio 2017 version 15.9 Microsoft	`cpe:/a:microsoft:visual_studio_2017:version_15.9`	—
Microsoft Visual Studio 2013 Update 5 Microsoft	`cpe:/a:microsoft:visual_studio_2013:update_5`	—
Microsoft .NET Framework 3.5.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5.1`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Hitachi Storage Virtual Storage Platform Hitachi	`cpe:/h:hitachi:storage:virtual_storage_platform`	—
Microsoft .NET Framework 2.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:2.0_sp2`	—
Microsoft Azure DevOps Server 2020.1.2 Microsoft	`cpe:/o:microsoft:azure_devops_server:2020.1.2:-`	—
Microsoft .NET Framework 3.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.0_sp2`	—
Microsoft Visual Studio 2019 version 16.11 Microsoft	`cpe:/a:microsoft:visual_studio_2019:version_16.11`	—
Microsoft Visual Studio 2022 version 17.6 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.6`	—
Microsoft Visual Studio 2022 version 17.4 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.4`	—
Microsoft Visual Studio 2022 version 17.5 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.5`	—
Microsoft NuGet 6.6.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.6.0`	—
Microsoft Visual Studio 2022 version 17.2 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.2`	—
Microsoft NuGet 6.4.1 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.4.1`	—
Microsoft NuGet 6.2.3 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.2.3`	—
Microsoft NuGet 6.3.2 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.3.2`	—
Microsoft NuGet 6.0.4 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.0.4`	—
Microsoft .NET Framework 3.5 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5:-`	—
Microsoft .NET Framework 4.6.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.6.2`	—
Microsoft Visual Studio Code Microsoft	`cpe:/a:microsoft:visual_studio_code:-`	—
Microsoft .NET Framework 4.8.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8.1`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Microsoft Visual Studio 2022 version 17.0 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.0`	—

CVE-2023-29007

Affected products

Known affected 31 products

Product	Identifier	Version
Microsoft .NET Framework 4.7.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.1`	—
Microsoft .NET Framework 4.7.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.2`	—
Microsoft NuGet 6.5.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.5.0`	—
Microsoft .NET Framework 4.7 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Microsoft .NET Framework 4.8 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8`	—
Microsoft Visual Studio 2015 Update 3 Microsoft	`cpe:/a:microsoft:visual_studio_2015:update_3`	—
Microsoft Visual Studio 2017 version 15.9 Microsoft	`cpe:/a:microsoft:visual_studio_2017:version_15.9`	—
Microsoft Visual Studio 2013 Update 5 Microsoft	`cpe:/a:microsoft:visual_studio_2013:update_5`	—
Microsoft .NET Framework 3.5.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5.1`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Hitachi Storage Virtual Storage Platform Hitachi	`cpe:/h:hitachi:storage:virtual_storage_platform`	—
Microsoft .NET Framework 2.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:2.0_sp2`	—
Microsoft Azure DevOps Server 2020.1.2 Microsoft	`cpe:/o:microsoft:azure_devops_server:2020.1.2:-`	—
Microsoft .NET Framework 3.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.0_sp2`	—
Microsoft Visual Studio 2019 version 16.11 Microsoft	`cpe:/a:microsoft:visual_studio_2019:version_16.11`	—
Microsoft Visual Studio 2022 version 17.6 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.6`	—
Microsoft Visual Studio 2022 version 17.4 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.4`	—
Microsoft Visual Studio 2022 version 17.5 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.5`	—
Microsoft NuGet 6.6.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.6.0`	—
Microsoft Visual Studio 2022 version 17.2 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.2`	—
Microsoft NuGet 6.4.1 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.4.1`	—
Microsoft NuGet 6.2.3 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.2.3`	—
Microsoft NuGet 6.3.2 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.3.2`	—
Microsoft NuGet 6.0.4 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.0.4`	—
Microsoft .NET Framework 3.5 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5:-`	—
Microsoft .NET Framework 4.6.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.6.2`	—
Microsoft Visual Studio Code Microsoft	`cpe:/a:microsoft:visual_studio_code:-`	—
Microsoft .NET Framework 4.8.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8.1`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Microsoft Visual Studio 2022 version 17.0 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.0`	—

CVE-2023-27911

Affected products

Known affected 31 products

Product	Identifier	Version
Microsoft .NET Framework 4.7.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.1`	—
Microsoft .NET Framework 4.7.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.2`	—
Microsoft NuGet 6.5.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.5.0`	—
Microsoft .NET Framework 4.7 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Microsoft .NET Framework 4.8 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8`	—
Microsoft Visual Studio 2015 Update 3 Microsoft	`cpe:/a:microsoft:visual_studio_2015:update_3`	—
Microsoft Visual Studio 2017 version 15.9 Microsoft	`cpe:/a:microsoft:visual_studio_2017:version_15.9`	—
Microsoft Visual Studio 2013 Update 5 Microsoft	`cpe:/a:microsoft:visual_studio_2013:update_5`	—
Microsoft .NET Framework 3.5.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5.1`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Hitachi Storage Virtual Storage Platform Hitachi	`cpe:/h:hitachi:storage:virtual_storage_platform`	—
Microsoft .NET Framework 2.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:2.0_sp2`	—
Microsoft Azure DevOps Server 2020.1.2 Microsoft	`cpe:/o:microsoft:azure_devops_server:2020.1.2:-`	—
Microsoft .NET Framework 3.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.0_sp2`	—
Microsoft Visual Studio 2019 version 16.11 Microsoft	`cpe:/a:microsoft:visual_studio_2019:version_16.11`	—
Microsoft Visual Studio 2022 version 17.6 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.6`	—
Microsoft Visual Studio 2022 version 17.4 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.4`	—
Microsoft Visual Studio 2022 version 17.5 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.5`	—
Microsoft NuGet 6.6.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.6.0`	—
Microsoft Visual Studio 2022 version 17.2 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.2`	—
Microsoft NuGet 6.4.1 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.4.1`	—
Microsoft NuGet 6.2.3 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.2.3`	—
Microsoft NuGet 6.3.2 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.3.2`	—
Microsoft NuGet 6.0.4 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.0.4`	—
Microsoft .NET Framework 3.5 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5:-`	—
Microsoft .NET Framework 4.6.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.6.2`	—
Microsoft Visual Studio Code Microsoft	`cpe:/a:microsoft:visual_studio_code:-`	—
Microsoft .NET Framework 4.8.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8.1`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Microsoft Visual Studio 2022 version 17.0 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.0`	—

CVE-2023-27910

Affected products

Known affected 31 products

Product	Identifier	Version
Microsoft .NET Framework 4.7.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.1`	—
Microsoft .NET Framework 4.7.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.2`	—
Microsoft NuGet 6.5.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.5.0`	—
Microsoft .NET Framework 4.7 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Microsoft .NET Framework 4.8 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8`	—
Microsoft Visual Studio 2015 Update 3 Microsoft	`cpe:/a:microsoft:visual_studio_2015:update_3`	—
Microsoft Visual Studio 2017 version 15.9 Microsoft	`cpe:/a:microsoft:visual_studio_2017:version_15.9`	—
Microsoft Visual Studio 2013 Update 5 Microsoft	`cpe:/a:microsoft:visual_studio_2013:update_5`	—
Microsoft .NET Framework 3.5.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5.1`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Hitachi Storage Virtual Storage Platform Hitachi	`cpe:/h:hitachi:storage:virtual_storage_platform`	—
Microsoft .NET Framework 2.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:2.0_sp2`	—
Microsoft Azure DevOps Server 2020.1.2 Microsoft	`cpe:/o:microsoft:azure_devops_server:2020.1.2:-`	—
Microsoft .NET Framework 3.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.0_sp2`	—
Microsoft Visual Studio 2019 version 16.11 Microsoft	`cpe:/a:microsoft:visual_studio_2019:version_16.11`	—
Microsoft Visual Studio 2022 version 17.6 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.6`	—
Microsoft Visual Studio 2022 version 17.4 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.4`	—
Microsoft Visual Studio 2022 version 17.5 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.5`	—
Microsoft NuGet 6.6.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.6.0`	—
Microsoft Visual Studio 2022 version 17.2 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.2`	—
Microsoft NuGet 6.4.1 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.4.1`	—
Microsoft NuGet 6.2.3 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.2.3`	—
Microsoft NuGet 6.3.2 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.3.2`	—
Microsoft NuGet 6.0.4 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.0.4`	—
Microsoft .NET Framework 3.5 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5:-`	—
Microsoft .NET Framework 4.6.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.6.2`	—
Microsoft Visual Studio Code Microsoft	`cpe:/a:microsoft:visual_studio_code:-`	—
Microsoft .NET Framework 4.8.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8.1`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Microsoft Visual Studio 2022 version 17.0 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.0`	—

CVE-2023-27909

Affected products

Known affected 31 products

Product	Identifier	Version
Microsoft .NET Framework 4.7.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.1`	—
Microsoft .NET Framework 4.7.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.2`	—
Microsoft NuGet 6.5.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.5.0`	—
Microsoft .NET Framework 4.7 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Microsoft .NET Framework 4.8 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8`	—
Microsoft Visual Studio 2015 Update 3 Microsoft	`cpe:/a:microsoft:visual_studio_2015:update_3`	—
Microsoft Visual Studio 2017 version 15.9 Microsoft	`cpe:/a:microsoft:visual_studio_2017:version_15.9`	—
Microsoft Visual Studio 2013 Update 5 Microsoft	`cpe:/a:microsoft:visual_studio_2013:update_5`	—
Microsoft .NET Framework 3.5.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5.1`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Hitachi Storage Virtual Storage Platform Hitachi	`cpe:/h:hitachi:storage:virtual_storage_platform`	—
Microsoft .NET Framework 2.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:2.0_sp2`	—
Microsoft Azure DevOps Server 2020.1.2 Microsoft	`cpe:/o:microsoft:azure_devops_server:2020.1.2:-`	—
Microsoft .NET Framework 3.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.0_sp2`	—
Microsoft Visual Studio 2019 version 16.11 Microsoft	`cpe:/a:microsoft:visual_studio_2019:version_16.11`	—
Microsoft Visual Studio 2022 version 17.6 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.6`	—
Microsoft Visual Studio 2022 version 17.4 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.4`	—
Microsoft Visual Studio 2022 version 17.5 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.5`	—
Microsoft NuGet 6.6.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.6.0`	—
Microsoft Visual Studio 2022 version 17.2 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.2`	—
Microsoft NuGet 6.4.1 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.4.1`	—
Microsoft NuGet 6.2.3 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.2.3`	—
Microsoft NuGet 6.3.2 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.3.2`	—
Microsoft NuGet 6.0.4 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.0.4`	—
Microsoft .NET Framework 3.5 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5:-`	—
Microsoft .NET Framework 4.6.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.6.2`	—
Microsoft Visual Studio Code Microsoft	`cpe:/a:microsoft:visual_studio_code:-`	—
Microsoft .NET Framework 4.8.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8.1`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Microsoft Visual Studio 2022 version 17.0 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.0`	—

CVE-2023-25815

Affected products

Known affected 31 products

Product	Identifier	Version
Microsoft .NET Framework 4.7.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.1`	—
Microsoft .NET Framework 4.7.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.2`	—
Microsoft NuGet 6.5.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.5.0`	—
Microsoft .NET Framework 4.7 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Microsoft .NET Framework 4.8 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8`	—
Microsoft Visual Studio 2015 Update 3 Microsoft	`cpe:/a:microsoft:visual_studio_2015:update_3`	—
Microsoft Visual Studio 2017 version 15.9 Microsoft	`cpe:/a:microsoft:visual_studio_2017:version_15.9`	—
Microsoft Visual Studio 2013 Update 5 Microsoft	`cpe:/a:microsoft:visual_studio_2013:update_5`	—
Microsoft .NET Framework 3.5.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5.1`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Hitachi Storage Virtual Storage Platform Hitachi	`cpe:/h:hitachi:storage:virtual_storage_platform`	—
Microsoft .NET Framework 2.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:2.0_sp2`	—
Microsoft Azure DevOps Server 2020.1.2 Microsoft	`cpe:/o:microsoft:azure_devops_server:2020.1.2:-`	—
Microsoft .NET Framework 3.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.0_sp2`	—
Microsoft Visual Studio 2019 version 16.11 Microsoft	`cpe:/a:microsoft:visual_studio_2019:version_16.11`	—
Microsoft Visual Studio 2022 version 17.6 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.6`	—
Microsoft Visual Studio 2022 version 17.4 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.4`	—
Microsoft Visual Studio 2022 version 17.5 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.5`	—
Microsoft NuGet 6.6.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.6.0`	—
Microsoft Visual Studio 2022 version 17.2 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.2`	—
Microsoft NuGet 6.4.1 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.4.1`	—
Microsoft NuGet 6.2.3 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.2.3`	—
Microsoft NuGet 6.3.2 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.3.2`	—
Microsoft NuGet 6.0.4 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.0.4`	—
Microsoft .NET Framework 3.5 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5:-`	—
Microsoft .NET Framework 4.6.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.6.2`	—
Microsoft Visual Studio Code Microsoft	`cpe:/a:microsoft:visual_studio_code:-`	—
Microsoft .NET Framework 4.8.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8.1`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Microsoft Visual Studio 2022 version 17.0 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.0`	—

CVE-2023-25652

Affected products

Known affected 31 products

Product	Identifier	Version
Microsoft .NET Framework 4.7.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.1`	—
Microsoft .NET Framework 4.7.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.2`	—
Microsoft NuGet 6.5.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.5.0`	—
Microsoft .NET Framework 4.7 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Microsoft .NET Framework 4.8 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8`	—
Microsoft Visual Studio 2015 Update 3 Microsoft	`cpe:/a:microsoft:visual_studio_2015:update_3`	—
Microsoft Visual Studio 2017 version 15.9 Microsoft	`cpe:/a:microsoft:visual_studio_2017:version_15.9`	—
Microsoft Visual Studio 2013 Update 5 Microsoft	`cpe:/a:microsoft:visual_studio_2013:update_5`	—
Microsoft .NET Framework 3.5.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5.1`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Hitachi Storage Virtual Storage Platform Hitachi	`cpe:/h:hitachi:storage:virtual_storage_platform`	—
Microsoft .NET Framework 2.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:2.0_sp2`	—
Microsoft Azure DevOps Server 2020.1.2 Microsoft	`cpe:/o:microsoft:azure_devops_server:2020.1.2:-`	—
Microsoft .NET Framework 3.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.0_sp2`	—
Microsoft Visual Studio 2019 version 16.11 Microsoft	`cpe:/a:microsoft:visual_studio_2019:version_16.11`	—
Microsoft Visual Studio 2022 version 17.6 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.6`	—
Microsoft Visual Studio 2022 version 17.4 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.4`	—
Microsoft Visual Studio 2022 version 17.5 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.5`	—
Microsoft NuGet 6.6.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.6.0`	—
Microsoft Visual Studio 2022 version 17.2 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.2`	—
Microsoft NuGet 6.4.1 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.4.1`	—
Microsoft NuGet 6.2.3 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.2.3`	—
Microsoft NuGet 6.3.2 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.3.2`	—
Microsoft NuGet 6.0.4 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.0.4`	—
Microsoft .NET Framework 3.5 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5:-`	—
Microsoft .NET Framework 4.6.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.6.2`	—
Microsoft Visual Studio Code Microsoft	`cpe:/a:microsoft:visual_studio_code:-`	—
Microsoft .NET Framework 4.8.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8.1`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Microsoft Visual Studio 2022 version 17.0 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.0`	—

CVE-2023-24936

Affected products

Known affected 31 products

Product	Identifier	Version
Microsoft .NET Framework 4.7.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.1`	—
Microsoft .NET Framework 4.7.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.2`	—
Microsoft NuGet 6.5.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.5.0`	—
Microsoft .NET Framework 4.7 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Microsoft .NET Framework 4.8 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8`	—
Microsoft Visual Studio 2015 Update 3 Microsoft	`cpe:/a:microsoft:visual_studio_2015:update_3`	—
Microsoft Visual Studio 2017 version 15.9 Microsoft	`cpe:/a:microsoft:visual_studio_2017:version_15.9`	—
Microsoft Visual Studio 2013 Update 5 Microsoft	`cpe:/a:microsoft:visual_studio_2013:update_5`	—
Microsoft .NET Framework 3.5.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5.1`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Hitachi Storage Virtual Storage Platform Hitachi	`cpe:/h:hitachi:storage:virtual_storage_platform`	—
Microsoft .NET Framework 2.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:2.0_sp2`	—
Microsoft Azure DevOps Server 2020.1.2 Microsoft	`cpe:/o:microsoft:azure_devops_server:2020.1.2:-`	—
Microsoft .NET Framework 3.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.0_sp2`	—
Microsoft Visual Studio 2019 version 16.11 Microsoft	`cpe:/a:microsoft:visual_studio_2019:version_16.11`	—
Microsoft Visual Studio 2022 version 17.6 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.6`	—
Microsoft Visual Studio 2022 version 17.4 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.4`	—
Microsoft Visual Studio 2022 version 17.5 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.5`	—
Microsoft NuGet 6.6.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.6.0`	—
Microsoft Visual Studio 2022 version 17.2 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.2`	—
Microsoft NuGet 6.4.1 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.4.1`	—
Microsoft NuGet 6.2.3 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.2.3`	—
Microsoft NuGet 6.3.2 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.3.2`	—
Microsoft NuGet 6.0.4 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.0.4`	—
Microsoft .NET Framework 3.5 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5:-`	—
Microsoft .NET Framework 4.6.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.6.2`	—
Microsoft Visual Studio Code Microsoft	`cpe:/a:microsoft:visual_studio_code:-`	—
Microsoft .NET Framework 4.8.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8.1`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Microsoft Visual Studio 2022 version 17.0 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.0`	—

CVE-2023-24897

Affected products

Known affected 31 products

Product	Identifier	Version
Microsoft .NET Framework 4.7.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.1`	—
Microsoft .NET Framework 4.7.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.2`	—
Microsoft NuGet 6.5.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.5.0`	—
Microsoft .NET Framework 4.7 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Microsoft .NET Framework 4.8 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8`	—
Microsoft Visual Studio 2015 Update 3 Microsoft	`cpe:/a:microsoft:visual_studio_2015:update_3`	—
Microsoft Visual Studio 2017 version 15.9 Microsoft	`cpe:/a:microsoft:visual_studio_2017:version_15.9`	—
Microsoft Visual Studio 2013 Update 5 Microsoft	`cpe:/a:microsoft:visual_studio_2013:update_5`	—
Microsoft .NET Framework 3.5.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5.1`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Hitachi Storage Virtual Storage Platform Hitachi	`cpe:/h:hitachi:storage:virtual_storage_platform`	—
Microsoft .NET Framework 2.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:2.0_sp2`	—
Microsoft Azure DevOps Server 2020.1.2 Microsoft	`cpe:/o:microsoft:azure_devops_server:2020.1.2:-`	—
Microsoft .NET Framework 3.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.0_sp2`	—
Microsoft Visual Studio 2019 version 16.11 Microsoft	`cpe:/a:microsoft:visual_studio_2019:version_16.11`	—
Microsoft Visual Studio 2022 version 17.6 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.6`	—
Microsoft Visual Studio 2022 version 17.4 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.4`	—
Microsoft Visual Studio 2022 version 17.5 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.5`	—
Microsoft NuGet 6.6.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.6.0`	—
Microsoft Visual Studio 2022 version 17.2 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.2`	—
Microsoft NuGet 6.4.1 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.4.1`	—
Microsoft NuGet 6.2.3 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.2.3`	—
Microsoft NuGet 6.3.2 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.3.2`	—
Microsoft NuGet 6.0.4 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.0.4`	—
Microsoft .NET Framework 3.5 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5:-`	—
Microsoft .NET Framework 4.6.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.6.2`	—
Microsoft Visual Studio Code Microsoft	`cpe:/a:microsoft:visual_studio_code:-`	—
Microsoft .NET Framework 4.8.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8.1`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Microsoft Visual Studio 2022 version 17.0 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.0`	—

CVE-2023-24895

Affected products

Known affected 31 products

Product	Identifier	Version
Microsoft .NET Framework 4.7.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.1`	—
Microsoft .NET Framework 4.7.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.2`	—
Microsoft NuGet 6.5.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.5.0`	—
Microsoft .NET Framework 4.7 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Microsoft .NET Framework 4.8 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8`	—
Microsoft Visual Studio 2015 Update 3 Microsoft	`cpe:/a:microsoft:visual_studio_2015:update_3`	—
Microsoft Visual Studio 2017 version 15.9 Microsoft	`cpe:/a:microsoft:visual_studio_2017:version_15.9`	—
Microsoft Visual Studio 2013 Update 5 Microsoft	`cpe:/a:microsoft:visual_studio_2013:update_5`	—
Microsoft .NET Framework 3.5.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5.1`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Hitachi Storage Virtual Storage Platform Hitachi	`cpe:/h:hitachi:storage:virtual_storage_platform`	—
Microsoft .NET Framework 2.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:2.0_sp2`	—
Microsoft Azure DevOps Server 2020.1.2 Microsoft	`cpe:/o:microsoft:azure_devops_server:2020.1.2:-`	—
Microsoft .NET Framework 3.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.0_sp2`	—
Microsoft Visual Studio 2019 version 16.11 Microsoft	`cpe:/a:microsoft:visual_studio_2019:version_16.11`	—
Microsoft Visual Studio 2022 version 17.6 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.6`	—
Microsoft Visual Studio 2022 version 17.4 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.4`	—
Microsoft Visual Studio 2022 version 17.5 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.5`	—
Microsoft NuGet 6.6.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.6.0`	—
Microsoft Visual Studio 2022 version 17.2 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.2`	—
Microsoft NuGet 6.4.1 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.4.1`	—
Microsoft NuGet 6.2.3 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.2.3`	—
Microsoft NuGet 6.3.2 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.3.2`	—
Microsoft NuGet 6.0.4 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.0.4`	—
Microsoft .NET Framework 3.5 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5:-`	—
Microsoft .NET Framework 4.6.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.6.2`	—
Microsoft Visual Studio Code Microsoft	`cpe:/a:microsoft:visual_studio_code:-`	—
Microsoft .NET Framework 4.8.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8.1`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Microsoft Visual Studio 2022 version 17.0 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.0`	—

CVE-2023-21569

Affected products

Known affected 31 products

Product	Identifier	Version
Microsoft .NET Framework 4.7.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.1`	—
Microsoft .NET Framework 4.7.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.2`	—
Microsoft NuGet 6.5.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.5.0`	—
Microsoft .NET Framework 4.7 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Microsoft .NET Framework 4.8 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8`	—
Microsoft Visual Studio 2015 Update 3 Microsoft	`cpe:/a:microsoft:visual_studio_2015:update_3`	—
Microsoft Visual Studio 2017 version 15.9 Microsoft	`cpe:/a:microsoft:visual_studio_2017:version_15.9`	—
Microsoft Visual Studio 2013 Update 5 Microsoft	`cpe:/a:microsoft:visual_studio_2013:update_5`	—
Microsoft .NET Framework 3.5.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5.1`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Hitachi Storage Virtual Storage Platform Hitachi	`cpe:/h:hitachi:storage:virtual_storage_platform`	—
Microsoft .NET Framework 2.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:2.0_sp2`	—
Microsoft Azure DevOps Server 2020.1.2 Microsoft	`cpe:/o:microsoft:azure_devops_server:2020.1.2:-`	—
Microsoft .NET Framework 3.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.0_sp2`	—
Microsoft Visual Studio 2019 version 16.11 Microsoft	`cpe:/a:microsoft:visual_studio_2019:version_16.11`	—
Microsoft Visual Studio 2022 version 17.6 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.6`	—
Microsoft Visual Studio 2022 version 17.4 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.4`	—
Microsoft Visual Studio 2022 version 17.5 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.5`	—
Microsoft NuGet 6.6.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.6.0`	—
Microsoft Visual Studio 2022 version 17.2 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.2`	—
Microsoft NuGet 6.4.1 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.4.1`	—
Microsoft NuGet 6.2.3 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.2.3`	—
Microsoft NuGet 6.3.2 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.3.2`	—
Microsoft NuGet 6.0.4 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.0.4`	—
Microsoft .NET Framework 3.5 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5:-`	—
Microsoft .NET Framework 4.6.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.6.2`	—
Microsoft Visual Studio Code Microsoft	`cpe:/a:microsoft:visual_studio_code:-`	—
Microsoft .NET Framework 4.8.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8.1`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Microsoft Visual Studio 2022 version 17.0 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.0`	—

CVE-2023-21565

Affected products

Known affected 31 products

Product	Identifier	Version
Microsoft .NET Framework 4.7.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.1`	—
Microsoft .NET Framework 4.7.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7.2`	—
Microsoft NuGet 6.5.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.5.0`	—
Microsoft .NET Framework 4.7 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.7`	—
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Microsoft .NET Framework 4.8 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8`	—
Microsoft Visual Studio 2015 Update 3 Microsoft	`cpe:/a:microsoft:visual_studio_2015:update_3`	—
Microsoft Visual Studio 2017 version 15.9 Microsoft	`cpe:/a:microsoft:visual_studio_2017:version_15.9`	—
Microsoft Visual Studio 2013 Update 5 Microsoft	`cpe:/a:microsoft:visual_studio_2013:update_5`	—
Microsoft .NET Framework 3.5.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5.1`	—
Oracle Linux Oracle	`cpe:/o:oracle:linux:-`	—
Hitachi Storage Virtual Storage Platform Hitachi	`cpe:/h:hitachi:storage:virtual_storage_platform`	—
Microsoft .NET Framework 2.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:2.0_sp2`	—
Microsoft Azure DevOps Server 2020.1.2 Microsoft	`cpe:/o:microsoft:azure_devops_server:2020.1.2:-`	—
Microsoft .NET Framework 3.0 SP2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.0_sp2`	—
Microsoft Visual Studio 2019 version 16.11 Microsoft	`cpe:/a:microsoft:visual_studio_2019:version_16.11`	—
Microsoft Visual Studio 2022 version 17.6 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.6`	—
Microsoft Visual Studio 2022 version 17.4 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.4`	—
Microsoft Visual Studio 2022 version 17.5 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.5`	—
Microsoft NuGet 6.6.0 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.6.0`	—
Microsoft Visual Studio 2022 version 17.2 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.2`	—
Microsoft NuGet 6.4.1 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.4.1`	—
Microsoft NuGet 6.2.3 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.2.3`	—
Microsoft NuGet 6.3.2 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.3.2`	—
Microsoft NuGet 6.0.4 Microsoft / NuGet	`cpe:/a:microsoft:nuget:6.0.4`	—
Microsoft .NET Framework 3.5 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:3.5:-`	—
Microsoft .NET Framework 4.6.2 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.6.2`	—
Microsoft Visual Studio Code Microsoft	`cpe:/a:microsoft:visual_studio_code:-`	—
Microsoft .NET Framework 4.8.1 Microsoft / .NET Framework	`cpe:/a:microsoft:.net_framework:4.8.1`	—
Ubuntu Linux Ubuntu	`cpe:/o:canonical:ubuntu_linux:-`	—
Microsoft Visual Studio 2022 version 17.0 Microsoft / Visual Studio 2022	`cpe:/a:microsoft:visual_studio_2022:version_17.0`	—

References

17 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.hitachi.com/products/it/storage-solut…	external
https://access.redhat.com/errata/RHSA-2023:4449	external
https://access.redhat.com/errata/RHSA-2023:4448	external
https://ubuntu.com/security/notices/USN-6161-2	external
https://linux.oracle.com/errata/ELSA-2023-3592.html	external
https://linux.oracle.com/errata/ELSA-2023-3593.html	external
https://linux.oracle.com/errata/ELSA-2023-3582.html	external
http://linux.oracle.com/errata/ELSA-2023-3581.html	external
https://access.redhat.com/errata/RHSA-2023:3593	external
https://access.redhat.com/errata/RHSA-2023:3581	external
https://access.redhat.com/errata/RHSA-2023:3580	external
https://access.redhat.com/errata/RHSA-2023:3582	external
https://access.redhat.com/errata/RHSA-2023:3592	external
https://ubuntu.com/security/notices/USN-6161-1	external
https://msrc.microsoft.com/update-guide	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Microsoft .NET Framework ist eine Komponente des Microsoft Windows-Betriebssystems, das die Erstellung und Ausf\u00fchrung von Softwareanwendungen und Webdiensten erm\u00f6glicht. Es beinhaltet sowohl eine Laufzeitumgebung als auch ein Framework von Klassenbibliotheken (APIs), u. a. f\u00fcr die Programmiersprache ASP (ASP.NET), den Datenzugriff (ADO.NET), intelligente Clientanwendungen (Windows Forms) und weitere.\r\nMicrosoft Azure DevOps Server ist eine Plattform f\u00fcr kollaborative Softwareprojekte.\r\nNuGet ist ein Programm f\u00fcr die  Verteilung von Software.\r\nMicrosoft Visual Studio ist eine integrierte Entwicklungsumgebung f\u00fcr Hochsprachen.\r\nVisual Studio Code ist ein Quelltext-Editor von Microsoft.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer, authentisierter oder lokaler Angreifer kann mehrere Schwachstellen in Microsoft .NET Framework, Microsoft Azure DevOps Server, Microsoft NuGet, Microsoft Visual Studio und Microsoft Visual Studio Code ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- MacOS X\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-1446 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1446.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-1446 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1446"
      },
      {
        "category": "external",
        "summary": "Hitachi Vulnerability Information HITACHI-SEC-2023-306 vom 2023-09-26",
        "url": "https://www.hitachi.com/products/it/storage-solutions/sec_info/2023/06.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4449 vom 2023-08-03",
        "url": "https://access.redhat.com/errata/RHSA-2023:4449"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4448 vom 2023-08-03",
        "url": "https://access.redhat.com/errata/RHSA-2023:4448"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6161-2 vom 2023-06-23",
        "url": "https://ubuntu.com/security/notices/USN-6161-2"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2023-3592 vom 2023-06-17",
        "url": "https://linux.oracle.com/errata/ELSA-2023-3592.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2023-3593 vom 2023-06-17",
        "url": "https://linux.oracle.com/errata/ELSA-2023-3593.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2023-3582 vom 2023-06-16",
        "url": "https://linux.oracle.com/errata/ELSA-2023-3582.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2023-3581 vom 2023-06-15",
        "url": "http://linux.oracle.com/errata/ELSA-2023-3581.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3593 vom 2023-06-14",
        "url": "https://access.redhat.com/errata/RHSA-2023:3593"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3581 vom 2023-06-14",
        "url": "https://access.redhat.com/errata/RHSA-2023:3581"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3580 vom 2023-06-14",
        "url": "https://access.redhat.com/errata/RHSA-2023:3580"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3582 vom 2023-06-14",
        "url": "https://access.redhat.com/errata/RHSA-2023:3582"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3592 vom 2023-06-14",
        "url": "https://access.redhat.com/errata/RHSA-2023:3592"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6161-1 vom 2023-06-13",
        "url": "https://ubuntu.com/security/notices/USN-6161-1"
      },
      {
        "category": "external",
        "summary": "Microsoft Leitfaden f\u00fcr Sicherheitsupdates vom 2023-06-13",
        "url": "https://msrc.microsoft.com/update-guide"
      }
    ],
    "source_lang": "en-US",
    "title": "Microsoft Developer Tools: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2023-09-25T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T17:52:25.204+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2023-1446",
      "initial_release_date": "2023-06-13T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-06-13T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-06-14T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-06-15T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2023-06-18T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2023-06-25T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2023-08-02T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-09-25T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von HITACHI aufgenommen"
        }
      ],
      "status": "final",
      "version": "7"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Hitachi Storage Virtual Storage Platform",
            "product": {
              "name": "Hitachi Storage Virtual Storage Platform",
              "product_id": "T020487",
              "product_identification_helper": {
                "cpe": "cpe:/h:hitachi:storage:virtual_storage_platform"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Hitachi"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Microsoft .NET Framework 4.8.1",
                "product": {
                  "name": "Microsoft .NET Framework 4.8.1",
                  "product_id": "1273212",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:.net_framework:4.8.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Microsoft .NET Framework 3.5.1",
                "product": {
                  "name": "Microsoft .NET Framework 3.5.1",
                  "product_id": "130815",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:.net_framework:3.5.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Microsoft .NET Framework 4.6.2",
                "product": {
                  "name": "Microsoft .NET Framework 4.6.2",
                  "product_id": "336763",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:.net_framework:4.6.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Microsoft .NET Framework 4.7",
                "product": {
                  "name": "Microsoft .NET Framework 4.7",
                  "product_id": "432554",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:.net_framework:4.7"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Microsoft .NET Framework 4.7.1",
                "product": {
                  "name": "Microsoft .NET Framework 4.7.1",
                  "product_id": "432555",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:.net_framework:4.7.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Microsoft .NET Framework 4.7.2",
                "product": {
                  "name": "Microsoft .NET Framework 4.7.2",
                  "product_id": "432556",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:.net_framework:4.7.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Microsoft .NET Framework 4.8",
                "product": {
                  "name": "Microsoft .NET Framework 4.8",
                  "product_id": "432557",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:.net_framework:4.8"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Microsoft .NET Framework 3.5",
                "product": {
                  "name": "Microsoft .NET Framework 3.5",
                  "product_id": "834793",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:.net_framework:3.5:-"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Microsoft .NET Framework 2.0 SP2",
                "product": {
                  "name": "Microsoft .NET Framework 2.0 SP2",
                  "product_id": "T021515",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:.net_framework:2.0_sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Microsoft .NET Framework 3.0 SP2",
                "product": {
                  "name": "Microsoft .NET Framework 3.0 SP2",
                  "product_id": "T024564",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:.net_framework:3.0_sp2"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": ".NET Framework"
          },
          {
            "category": "product_name",
            "name": "Microsoft Azure DevOps Server 2020.1.2",
            "product": {
              "name": "Microsoft Azure DevOps Server 2020.1.2",
              "product_id": "1342801",
              "product_identification_helper": {
                "cpe": "cpe:/o:microsoft:azure_devops_server:2020.1.2:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Microsoft NuGet 6.0.4",
                "product": {
                  "name": "Microsoft NuGet 6.0.4",
                  "product_id": "T028096",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:nuget:6.0.4"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Microsoft NuGet 6.2.3",
                "product": {
                  "name": "Microsoft NuGet 6.2.3",
                  "product_id": "T028097",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:nuget:6.2.3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Microsoft NuGet 6.3.2",
                "product": {
                  "name": "Microsoft NuGet 6.3.2",
                  "product_id": "T028098",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:nuget:6.3.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Microsoft NuGet 6.4.1",
                "product": {
                  "name": "Microsoft NuGet 6.4.1",
                  "product_id": "T028099",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:nuget:6.4.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Microsoft NuGet 6.5.0",
                "product": {
                  "name": "Microsoft NuGet 6.5.0",
                  "product_id": "T028100",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:nuget:6.5.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Microsoft NuGet 6.6.0",
                "product": {
                  "name": "Microsoft NuGet 6.6.0",
                  "product_id": "T028101",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:nuget:6.6.0"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "NuGet"
          },
          {
            "category": "product_name",
            "name": "Microsoft Visual Studio 2013 Update 5",
            "product": {
              "name": "Microsoft Visual Studio 2013 Update 5",
              "product_id": "T014512",
              "product_identification_helper": {
                "cpe": "cpe:/a:microsoft:visual_studio_2013:update_5"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Microsoft Visual Studio 2015 Update 3",
            "product": {
              "name": "Microsoft Visual Studio 2015 Update 3",
              "product_id": "T014511",
              "product_identification_helper": {
                "cpe": "cpe:/a:microsoft:visual_studio_2015:update_3"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Microsoft Visual Studio 2017 version 15.9",
            "product": {
              "name": "Microsoft Visual Studio 2017 version 15.9",
              "product_id": "T015502",
              "product_identification_helper": {
                "cpe": "cpe:/a:microsoft:visual_studio_2017:version_15.9"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Microsoft Visual Studio 2019 version 16.11",
            "product": {
              "name": "Microsoft Visual Studio 2019 version 16.11",
              "product_id": "T024563",
              "product_identification_helper": {
                "cpe": "cpe:/a:microsoft:visual_studio_2019:version_16.11"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Microsoft Visual Studio 2022 version 17.0",
                "product": {
                  "name": "Microsoft Visual Studio 2022 version 17.0",
                  "product_id": "T026754",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:visual_studio_2022:version_17.0"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Microsoft Visual Studio 2022 version 17.2",
                "product": {
                  "name": "Microsoft Visual Studio 2022 version 17.2",
                  "product_id": "T028102",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:visual_studio_2022:version_17.2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Microsoft Visual Studio 2022 version 17.4",
                "product": {
                  "name": "Microsoft Visual Studio 2022 version 17.4",
                  "product_id": "T028103",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:visual_studio_2022:version_17.4"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Microsoft Visual Studio 2022 version 17.5",
                "product": {
                  "name": "Microsoft Visual Studio 2022 version 17.5",
                  "product_id": "T028104",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:visual_studio_2022:version_17.5"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Microsoft Visual Studio 2022 version 17.6",
                "product": {
                  "name": "Microsoft Visual Studio 2022 version 17.6",
                  "product_id": "T028105",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:microsoft:visual_studio_2022:version_17.6"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Visual Studio 2022"
          },
          {
            "category": "product_name",
            "name": "Microsoft Visual Studio Code",
            "product": {
              "name": "Microsoft Visual Studio Code",
              "product_id": "699261",
              "product_identification_helper": {
                "cpe": "cpe:/a:microsoft:visual_studio_code:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Microsoft"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-33144",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "432555",
          "432556",
          "T028100",
          "432554",
          "67646",
          "432557",
          "T014511",
          "T015502",
          "T014512",
          "130815",
          "T004914",
          "T020487",
          "T021515",
          "1342801",
          "T024564",
          "T024563",
          "T028105",
          "T028103",
          "T028104",
          "T028101",
          "T028102",
          "T028099",
          "T028097",
          "T028098",
          "T028096",
          "834793",
          "336763",
          "699261",
          "1273212",
          "T000126",
          "T026754"
        ]
      },
      "release_date": "2023-06-13T22:00:00.000+00:00",
      "title": "CVE-2023-33144"
    },
    {
      "cve": "CVE-2023-33141",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "432555",
          "432556",
          "T028100",
          "432554",
          "67646",
          "432557",
          "T014511",
          "T015502",
          "T014512",
          "130815",
          "T004914",
          "T020487",
          "T021515",
          "1342801",
          "T024564",
          "T024563",
          "T028105",
          "T028103",
          "T028104",
          "T028101",
          "T028102",
          "T028099",
          "T028097",
          "T028098",
          "T028096",
          "834793",
          "336763",
          "699261",
          "1273212",
          "T000126",
          "T026754"
        ]
      },
      "release_date": "2023-06-13T22:00:00.000+00:00",
      "title": "CVE-2023-33141"
    },
    {
      "cve": "CVE-2023-33139",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "432555",
          "432556",
          "T028100",
          "432554",
          "67646",
          "432557",
          "T014511",
          "T015502",
          "T014512",
          "130815",
          "T004914",
          "T020487",
          "T021515",
          "1342801",
          "T024564",
          "T024563",
          "T028105",
          "T028103",
          "T028104",
          "T028101",
          "T028102",
          "T028099",
          "T028097",
          "T028098",
          "T028096",
          "834793",
          "336763",
          "699261",
          "1273212",
          "T000126",
          "T026754"
        ]
      },
      "release_date": "2023-06-13T22:00:00.000+00:00",
      "title": "CVE-2023-33139"
    },
    {
      "cve": "CVE-2023-33135",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "432555",
          "432556",
          "T028100",
          "432554",
          "67646",
          "432557",
          "T014511",
          "T015502",
          "T014512",
          "130815",
          "T004914",
          "T020487",
          "T021515",
          "1342801",
          "T024564",
          "T024563",
          "T028105",
          "T028103",
          "T028104",
          "T028101",
          "T028102",
          "T028099",
          "T028097",
          "T028098",
          "T028096",
          "834793",
          "336763",
          "699261",
          "1273212",
          "T000126",
          "T026754"
        ]
      },
      "release_date": "2023-06-13T22:00:00.000+00:00",
      "title": "CVE-2023-33135"
    },
    {
      "cve": "CVE-2023-33128",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "432555",
          "432556",
          "T028100",
          "432554",
          "67646",
          "432557",
          "T014511",
          "T015502",
          "T014512",
          "130815",
          "T004914",
          "T020487",
          "T021515",
          "1342801",
          "T024564",
          "T024563",
          "T028105",
          "T028103",
          "T028104",
          "T028101",
          "T028102",
          "T028099",
          "T028097",
          "T028098",
          "T028096",
          "834793",
          "336763",
          "699261",
          "1273212",
          "T000126",
          "T026754"
        ]
      },
      "release_date": "2023-06-13T22:00:00.000+00:00",
      "title": "CVE-2023-33128"
    },
    {
      "cve": "CVE-2023-33126",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "432555",
          "432556",
          "T028100",
          "432554",
          "67646",
          "432557",
          "T014511",
          "T015502",
          "T014512",
          "130815",
          "T004914",
          "T020487",
          "T021515",
          "1342801",
          "T024564",
          "T024563",
          "T028105",
          "T028103",
          "T028104",
          "T028101",
          "T028102",
          "T028099",
          "T028097",
          "T028098",
          "T028096",
          "834793",
          "336763",
          "699261",
          "1273212",
          "T000126",
          "T026754"
        ]
      },
      "release_date": "2023-06-13T22:00:00.000+00:00",
      "title": "CVE-2023-33126"
    },
    {
      "cve": "CVE-2023-32032",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "432555",
          "432556",
          "T028100",
          "432554",
          "67646",
          "432557",
          "T014511",
          "T015502",
          "T014512",
          "130815",
          "T004914",
          "T020487",
          "T021515",
          "1342801",
          "T024564",
          "T024563",
          "T028105",
          "T028103",
          "T028104",
          "T028101",
          "T028102",
          "T028099",
          "T028097",
          "T028098",
          "T028096",
          "834793",
          "336763",
          "699261",
          "1273212",
          "T000126",
          "T026754"
        ]
      },
      "release_date": "2023-06-13T22:00:00.000+00:00",
      "title": "CVE-2023-32032"
    },
    {
      "cve": "CVE-2023-32030",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "432555",
          "432556",
          "T028100",
          "432554",
          "67646",
          "432557",
          "T014511",
          "T015502",
          "T014512",
          "130815",
          "T004914",
          "T020487",
          "T021515",
          "1342801",
          "T024564",
          "T024563",
          "T028105",
          "T028103",
          "T028104",
          "T028101",
          "T028102",
          "T028099",
          "T028097",
          "T028098",
          "T028096",
          "834793",
          "336763",
          "699261",
          "1273212",
          "T000126",
          "T026754"
        ]
      },
      "release_date": "2023-06-13T22:00:00.000+00:00",
      "title": "CVE-2023-32030"
    },
    {
      "cve": "CVE-2023-29353",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "432555",
          "432556",
          "T028100",
          "432554",
          "67646",
          "432557",
          "T014511",
          "T015502",
          "T014512",
          "130815",
          "T004914",
          "T020487",
          "T021515",
          "1342801",
          "T024564",
          "T024563",
          "T028105",
          "T028103",
          "T028104",
          "T028101",
          "T028102",
          "T028099",
          "T028097",
          "T028098",
          "T028096",
          "834793",
          "336763",
          "699261",
          "1273212",
          "T000126",
          "T026754"
        ]
      },
      "release_date": "2023-06-13T22:00:00.000+00:00",
      "title": "CVE-2023-29353"
    },
    {
      "cve": "CVE-2023-29337",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "432555",
          "432556",
          "T028100",
          "432554",
          "67646",
          "432557",
          "T014511",
          "T015502",
          "T014512",
          "130815",
          "T004914",
          "T020487",
          "T021515",
          "1342801",
          "T024564",
          "T024563",
          "T028105",
          "T028103",
          "T028104",
          "T028101",
          "T028102",
          "T028099",
          "T028097",
          "T028098",
          "T028096",
          "834793",
          "336763",
          "699261",
          "1273212",
          "T000126",
          "T026754"
        ]
      },
      "release_date": "2023-06-13T22:00:00.000+00:00",
      "title": "CVE-2023-29337"
    },
    {
      "cve": "CVE-2023-29331",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "432555",
          "432556",
          "T028100",
          "432554",
          "67646",
          "432557",
          "T014511",
          "T015502",
          "T014512",
          "130815",
          "T004914",
          "T020487",
          "T021515",
          "1342801",
          "T024564",
          "T024563",
          "T028105",
          "T028103",
          "T028104",
          "T028101",
          "T028102",
          "T028099",
          "T028097",
          "T028098",
          "T028096",
          "834793",
          "336763",
          "699261",
          "1273212",
          "T000126",
          "T026754"
        ]
      },
      "release_date": "2023-06-13T22:00:00.000+00:00",
      "title": "CVE-2023-29331"
    },
    {
      "cve": "CVE-2023-29326",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "432555",
          "432556",
          "T028100",
          "432554",
          "67646",
          "432557",
          "T014511",
          "T015502",
          "T014512",
          "130815",
          "T004914",
          "T020487",
          "T021515",
          "1342801",
          "T024564",
          "T024563",
          "T028105",
          "T028103",
          "T028104",
          "T028101",
          "T028102",
          "T028099",
          "T028097",
          "T028098",
          "T028096",
          "834793",
          "336763",
          "699261",
          "1273212",
          "T000126",
          "T026754"
        ]
      },
      "release_date": "2023-06-13T22:00:00.000+00:00",
      "title": "CVE-2023-29326"
    },
    {
      "cve": "CVE-2023-29012",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "432555",
          "432556",
          "T028100",
          "432554",
          "67646",
          "432557",
          "T014511",
          "T015502",
          "T014512",
          "130815",
          "T004914",
          "T020487",
          "T021515",
          "1342801",
          "T024564",
          "T024563",
          "T028105",
          "T028103",
          "T028104",
          "T028101",
          "T028102",
          "T028099",
          "T028097",
          "T028098",
          "T028096",
          "834793",
          "336763",
          "699261",
          "1273212",
          "T000126",
          "T026754"
        ]
      },
      "release_date": "2023-06-13T22:00:00.000+00:00",
      "title": "CVE-2023-29012"
    },
    {
      "cve": "CVE-2023-29011",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "432555",
          "432556",
          "T028100",
          "432554",
          "67646",
          "432557",
          "T014511",
          "T015502",
          "T014512",
          "130815",
          "T004914",
          "T020487",
          "T021515",
          "1342801",
          "T024564",
          "T024563",
          "T028105",
          "T028103",
          "T028104",
          "T028101",
          "T028102",
          "T028099",
          "T028097",
          "T028098",
          "T028096",
          "834793",
          "336763",
          "699261",
          "1273212",
          "T000126",
          "T026754"
        ]
      },
      "release_date": "2023-06-13T22:00:00.000+00:00",
      "title": "CVE-2023-29011"
    },
    {
      "cve": "CVE-2023-29007",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "432555",
          "432556",
          "T028100",
          "432554",
          "67646",
          "432557",
          "T014511",
          "T015502",
          "T014512",
          "130815",
          "T004914",
          "T020487",
          "T021515",
          "1342801",
          "T024564",
          "T024563",
          "T028105",
          "T028103",
          "T028104",
          "T028101",
          "T028102",
          "T028099",
          "T028097",
          "T028098",
          "T028096",
          "834793",
          "336763",
          "699261",
          "1273212",
          "T000126",
          "T026754"
        ]
      },
      "release_date": "2023-06-13T22:00:00.000+00:00",
      "title": "CVE-2023-29007"
    },
    {
      "cve": "CVE-2023-27911",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "432555",
          "432556",
          "T028100",
          "432554",
          "67646",
          "432557",
          "T014511",
          "T015502",
          "T014512",
          "130815",
          "T004914",
          "T020487",
          "T021515",
          "1342801",
          "T024564",
          "T024563",
          "T028105",
          "T028103",
          "T028104",
          "T028101",
          "T028102",
          "T028099",
          "T028097",
          "T028098",
          "T028096",
          "834793",
          "336763",
          "699261",
          "1273212",
          "T000126",
          "T026754"
        ]
      },
      "release_date": "2023-06-13T22:00:00.000+00:00",
      "title": "CVE-2023-27911"
    },
    {
      "cve": "CVE-2023-27910",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "432555",
          "432556",
          "T028100",
          "432554",
          "67646",
          "432557",
          "T014511",
          "T015502",
          "T014512",
          "130815",
          "T004914",
          "T020487",
          "T021515",
          "1342801",
          "T024564",
          "T024563",
          "T028105",
          "T028103",
          "T028104",
          "T028101",
          "T028102",
          "T028099",
          "T028097",
          "T028098",
          "T028096",
          "834793",
          "336763",
          "699261",
          "1273212",
          "T000126",
          "T026754"
        ]
      },
      "release_date": "2023-06-13T22:00:00.000+00:00",
      "title": "CVE-2023-27910"
    },
    {
      "cve": "CVE-2023-27909",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "432555",
          "432556",
          "T028100",
          "432554",
          "67646",
          "432557",
          "T014511",
          "T015502",
          "T014512",
          "130815",
          "T004914",
          "T020487",
          "T021515",
          "1342801",
          "T024564",
          "T024563",
          "T028105",
          "T028103",
          "T028104",
          "T028101",
          "T028102",
          "T028099",
          "T028097",
          "T028098",
          "T028096",
          "834793",
          "336763",
          "699261",
          "1273212",
          "T000126",
          "T026754"
        ]
      },
      "release_date": "2023-06-13T22:00:00.000+00:00",
      "title": "CVE-2023-27909"
    },
    {
      "cve": "CVE-2023-25815",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "432555",
          "432556",
          "T028100",
          "432554",
          "67646",
          "432557",
          "T014511",
          "T015502",
          "T014512",
          "130815",
          "T004914",
          "T020487",
          "T021515",
          "1342801",
          "T024564",
          "T024563",
          "T028105",
          "T028103",
          "T028104",
          "T028101",
          "T028102",
          "T028099",
          "T028097",
          "T028098",
          "T028096",
          "834793",
          "336763",
          "699261",
          "1273212",
          "T000126",
          "T026754"
        ]
      },
      "release_date": "2023-06-13T22:00:00.000+00:00",
      "title": "CVE-2023-25815"
    },
    {
      "cve": "CVE-2023-25652",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "432555",
          "432556",
          "T028100",
          "432554",
          "67646",
          "432557",
          "T014511",
          "T015502",
          "T014512",
          "130815",
          "T004914",
          "T020487",
          "T021515",
          "1342801",
          "T024564",
          "T024563",
          "T028105",
          "T028103",
          "T028104",
          "T028101",
          "T028102",
          "T028099",
          "T028097",
          "T028098",
          "T028096",
          "834793",
          "336763",
          "699261",
          "1273212",
          "T000126",
          "T026754"
        ]
      },
      "release_date": "2023-06-13T22:00:00.000+00:00",
      "title": "CVE-2023-25652"
    },
    {
      "cve": "CVE-2023-24936",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "432555",
          "432556",
          "T028100",
          "432554",
          "67646",
          "432557",
          "T014511",
          "T015502",
          "T014512",
          "130815",
          "T004914",
          "T020487",
          "T021515",
          "1342801",
          "T024564",
          "T024563",
          "T028105",
          "T028103",
          "T028104",
          "T028101",
          "T028102",
          "T028099",
          "T028097",
          "T028098",
          "T028096",
          "834793",
          "336763",
          "699261",
          "1273212",
          "T000126",
          "T026754"
        ]
      },
      "release_date": "2023-06-13T22:00:00.000+00:00",
      "title": "CVE-2023-24936"
    },
    {
      "cve": "CVE-2023-24897",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "432555",
          "432556",
          "T028100",
          "432554",
          "67646",
          "432557",
          "T014511",
          "T015502",
          "T014512",
          "130815",
          "T004914",
          "T020487",
          "T021515",
          "1342801",
          "T024564",
          "T024563",
          "T028105",
          "T028103",
          "T028104",
          "T028101",
          "T028102",
          "T028099",
          "T028097",
          "T028098",
          "T028096",
          "834793",
          "336763",
          "699261",
          "1273212",
          "T000126",
          "T026754"
        ]
      },
      "release_date": "2023-06-13T22:00:00.000+00:00",
      "title": "CVE-2023-24897"
    },
    {
      "cve": "CVE-2023-24895",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "432555",
          "432556",
          "T028100",
          "432554",
          "67646",
          "432557",
          "T014511",
          "T015502",
          "T014512",
          "130815",
          "T004914",
          "T020487",
          "T021515",
          "1342801",
          "T024564",
          "T024563",
          "T028105",
          "T028103",
          "T028104",
          "T028101",
          "T028102",
          "T028099",
          "T028097",
          "T028098",
          "T028096",
          "834793",
          "336763",
          "699261",
          "1273212",
          "T000126",
          "T026754"
        ]
      },
      "release_date": "2023-06-13T22:00:00.000+00:00",
      "title": "CVE-2023-24895"
    },
    {
      "cve": "CVE-2023-21569",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "432555",
          "432556",
          "T028100",
          "432554",
          "67646",
          "432557",
          "T014511",
          "T015502",
          "T014512",
          "130815",
          "T004914",
          "T020487",
          "T021515",
          "1342801",
          "T024564",
          "T024563",
          "T028105",
          "T028103",
          "T028104",
          "T028101",
          "T028102",
          "T028099",
          "T028097",
          "T028098",
          "T028096",
          "834793",
          "336763",
          "699261",
          "1273212",
          "T000126",
          "T026754"
        ]
      },
      "release_date": "2023-06-13T22:00:00.000+00:00",
      "title": "CVE-2023-21569"
    },
    {
      "cve": "CVE-2023-21565",
      "notes": [
        {
          "category": "description",
          "text": "Es existieren mehrere Schwachstellen in verschiedenen Microsoft Developer Tools. Die Fehler bestehen u.a. durch mehrere Puffer\u00fcberl\u00e4ufe, unsachgem\u00e4\u00dfe Eingabe\u00fcberpr\u00fcfungen und unzureichende \u00dcberpr\u00fcfungen. Die meisten der Schwachstellen sind noch nicht im Detail beschrieben. Zu den betroffenen Komponenten geh\u00f6ren unter anderem AutoDesk und GitHub f\u00fcr Microsoft Visual Studio. Ein Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern und Daten zu manipulieren. Die erfolgreiche Ausnutzung einiger dieser Schwachstellen erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "432555",
          "432556",
          "T028100",
          "432554",
          "67646",
          "432557",
          "T014511",
          "T015502",
          "T014512",
          "130815",
          "T004914",
          "T020487",
          "T021515",
          "1342801",
          "T024564",
          "T024563",
          "T028105",
          "T028103",
          "T028104",
          "T028101",
          "T028102",
          "T028099",
          "T028097",
          "T028098",
          "T028096",
          "834793",
          "336763",
          "699261",
          "1273212",
          "T000126",
          "T026754"
        ]
      },
      "release_date": "2023-06-13T22:00:00.000+00:00",
      "title": "CVE-2023-21565"
    }
  ]
}

MSRC_CVE-2023-29326

Vulnerability from csaf_microsoft - Published: 2023-06-13 07:00 - Updated: 2023-06-13 07:00

Summary

.NET Framework Remote Code Execution Vulnerability

Severity

Important

Notes

Additional Resources: To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle

Disclaimer: The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.

Customer Action: Required. The vulnerability documented by this CVE requires customer action to resolve.

CVE-2023-29326

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Affected products

Fixed 47 products

Product	Identifier	Version	Remediation
Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8		4.8.4644.0
Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8		4.8.4644.0
Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8		4.8.4644.0
Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8		4.8.4644.0
Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8		4.8.4644.0
Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8		4.8.4644.0
Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8		4.8.4644.0
Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8		4.8.4644.0
Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8		4.8.4644.0
Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8		4.8.4644.0
Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8		4.8.4644.0
Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8		4.8.4644.0
Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8		4.8.4644.0
Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8		4.8.4644.0
Microsoft .NET Framework 3.5 AND 4.7.2 4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.7.2		4.8.4644.0
Microsoft .NET Framework 3.5 AND 4.7.2 4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.7.2		4.8.4644.0
Microsoft .NET Framework 3.5 AND 4.7.2 4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.7.2		4.8.4644.0
Microsoft .NET Framework 3.5 AND 4.7.2 4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.7.2		4.8.4644.0
Microsoft .NET Framework 3.5 AND 4.7.2 4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.7.2		4.8.4644.0
Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 10.0.14393.5989 Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2		10.0.14393.5989
Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 10.0.14393.5989 Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2		10.0.14393.5989
Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 10.0.14393.5989 Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2		10.0.14393.5989
Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 10.0.14393.5989 Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2		10.0.14393.5989
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.9166.0
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.9166.0
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.9166.0
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.9166.0
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.9166.0
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.9166.0
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.9166.0
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.9166.0
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.9166.0
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.9166.0
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.9166.0
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.9166.0
Microsoft .NET Framework 3.5 and 4.6.2 10.0.10240.19983 Microsoft .NET Framework 3.5 and 4.6.2		10.0.10240.19983
Microsoft .NET Framework 3.5 and 4.6.2 10.0.10240.19983 Microsoft .NET Framework 3.5 and 4.6.2		10.0.10240.19983
Microsoft .NET Framework 3.5 3.0.6920.8954; 2.0.50727.8970 Microsoft .NET Framework 3.5		3.0.6920.8954; 2.0.50727.8970
Microsoft .NET Framework 3.5 3.0.6920.8954; 2.0.50727.8970 Microsoft .NET Framework 3.5		3.0.6920.8954; 2.0.50727.8970
Microsoft .NET Framework 3.5 3.0.6920.8954; 2.0.50727.8970 Microsoft .NET Framework 3.5		3.0.6920.8954; 2.0.50727.8970
Microsoft .NET Framework 3.5 3.0.6920.8954; 2.0.50727.8970 Microsoft .NET Framework 3.5		3.0.6920.8954; 2.0.50727.8970
Microsoft .NET Framework 3.0 Service Pack 2 4.7.4050.0 Microsoft .NET Framework 3.0 Service Pack 2		4.7.4050.0
Microsoft .NET Framework 3.0 Service Pack 2 4.7.4050.0 Microsoft .NET Framework 3.0 Service Pack 2		4.7.4050.0
Microsoft .NET Framework 2.0 Service Pack 2 4.7.4050.0 Microsoft .NET Framework 2.0 Service Pack 2		4.7.4050.0
Microsoft .NET Framework 2.0 Service Pack 2 4.7.4050.0 Microsoft .NET Framework 2.0 Service Pack 2		4.7.4050.0
Microsoft .NET Framework 3.5.1 3.0.6920.8954; 2.0.50727.8970 Microsoft .NET Framework 3.5.1		3.0.6920.8954; 2.0.50727.8970
Microsoft .NET Framework 3.5.1 3.0.6920.8954; 2.0.50727.8970 Microsoft .NET Framework 3.5.1		3.0.6920.8954; 2.0.50727.8970

Known affected 47 products

Product	Version	Remediation
Microsoft .NET Framework 3.5 and 4.6.2 <10.0.10240.19983 Microsoft .NET Framework 3.5 and 4.6.2	<10.0.10240.19983	Vendor Fix fix
Microsoft .NET Framework 3.5 and 4.6.2 <10.0.10240.19983 Microsoft .NET Framework 3.5 and 4.6.2	<10.0.10240.19983	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.9166.0 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.9166.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.9166.0 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.9166.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.9166.0 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.9166.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.9166.0 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.9166.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.9166.0 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.9166.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.9166.0 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.9166.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.9166.0 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.9166.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.9166.0 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.9166.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.9166.0 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.9166.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.9166.0 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.9166.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.9166.0 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.9166.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.9166.0 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.9166.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 <10.0.14393.5989 Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2	<10.0.14393.5989	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 <10.0.14393.5989 Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2	<10.0.14393.5989	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 <10.0.14393.5989 Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2	<10.0.14393.5989	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 <10.0.14393.5989 Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2	<10.0.14393.5989	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.7.2 <4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.7.2	<4.8.4644.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.7.2 <4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.7.2	<4.8.4644.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.7.2 <4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.7.2	<4.8.4644.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.7.2 <4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.7.2	<4.8.4644.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.7.2 <4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.7.2	<4.8.4644.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8	<4.8.4644.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8	<4.8.4644.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8	<4.8.4644.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8	<4.8.4644.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8	<4.8.4644.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8	<4.8.4644.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8	<4.8.4644.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8	<4.8.4644.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8	<4.8.4644.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8	<4.8.4644.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8	<4.8.4644.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8	<4.8.4644.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8	<4.8.4644.0	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.4644.0 Microsoft .NET Framework 3.5 AND 4.8	<4.8.4644.0	Vendor Fix fix
Microsoft .NET Framework 3.5.1 <3.0.6920.8954; 2.0.50727.8970 Microsoft .NET Framework 3.5.1	<3.0.6920.8954; 2.0.50727.8970	Vendor Fix fix Vendor Fix fix
Microsoft .NET Framework 3.5.1 <3.0.6920.8954; 2.0.50727.8970 Microsoft .NET Framework 3.5.1	<3.0.6920.8954; 2.0.50727.8970	Vendor Fix fix Vendor Fix fix
Microsoft .NET Framework 2.0 Service Pack 2 <4.7.4050.0 Microsoft .NET Framework 2.0 Service Pack 2	<4.7.4050.0	Vendor Fix fix Vendor Fix fix
Microsoft .NET Framework 2.0 Service Pack 2 <4.7.4050.0 Microsoft .NET Framework 2.0 Service Pack 2	<4.7.4050.0	Vendor Fix fix Vendor Fix fix
Microsoft .NET Framework 3.0 Service Pack 2 <4.7.4050.0 Microsoft .NET Framework 3.0 Service Pack 2	<4.7.4050.0	Vendor Fix fix Vendor Fix fix
Microsoft .NET Framework 3.0 Service Pack 2 <4.7.4050.0 Microsoft .NET Framework 3.0 Service Pack 2	<4.7.4050.0	Vendor Fix fix Vendor Fix fix
Microsoft .NET Framework 3.5 <3.0.6920.8954; 2.0.50727.8970 Microsoft .NET Framework 3.5	<3.0.6920.8954; 2.0.50727.8970	Vendor Fix fix Vendor Fix fix
Microsoft .NET Framework 3.5 <3.0.6920.8954; 2.0.50727.8970 Microsoft .NET Framework 3.5	<3.0.6920.8954; 2.0.50727.8970	Vendor Fix fix Vendor Fix fix
Microsoft .NET Framework 3.5 <3.0.6920.8954; 2.0.50727.8970 Microsoft .NET Framework 3.5	<3.0.6920.8954; 2.0.50727.8970	Vendor Fix fix Vendor Fix fix
Microsoft .NET Framework 3.5 <3.0.6920.8954; 2.0.50727.8970 Microsoft .NET Framework 3.5	<3.0.6920.8954; 2.0.50727.8970	Vendor Fix fix Vendor Fix fix

Threats

Impact Remote Code Execution

Exploit Status Exploited:No;Latest Software Release:Exploitation Less Likely

References

7 references

URL	Category
https://msrc.microsoft.com/update-guide/vulnerabi…	self
https://msrc.microsoft.com/csaf/2023/msrc_cve-202…	self
https://www.microsoft.com/en-us/msrc/exploitabili…	external
https://support.microsoft.com/lifecycle	external
https://www.first.org/cvss	external
https://msrc.microsoft.com/update-guide/vulnerabi…	self
https://msrc.microsoft.com/update-guide/vulnerabi…	self

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.microsoft.com/en-us/msrc/security-update-severity-rating-system",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Public",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en-US",
    "notes": [
      {
        "category": "general",
        "text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
        "title": "Additional Resources"
      },
      {
        "category": "legal_disclaimer",
        "text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
        "title": "Disclaimer"
      },
      {
        "category": "general",
        "text": "Required. The vulnerability documented by this CVE requires customer action to resolve.",
        "title": "Customer Action"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "secure@microsoft.com",
      "name": "Microsoft Security Response Center",
      "namespace": "https://msrc.microsoft.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "CVE-2023-29326 .NET Framework Remote Code Execution Vulnerability - HTML",
        "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29326"
      },
      {
        "category": "self",
        "summary": "CVE-2023-29326 .NET Framework Remote Code Execution Vulnerability - CSAF",
        "url": "https://msrc.microsoft.com/csaf/2023/msrc_cve-2023-29326.json"
      },
      {
        "category": "external",
        "summary": "Microsoft Exploitability Index",
        "url": "https://www.microsoft.com/en-us/msrc/exploitability-index?rtc=1"
      },
      {
        "category": "external",
        "summary": "Microsoft Support Lifecycle",
        "url": "https://support.microsoft.com/lifecycle"
      },
      {
        "category": "external",
        "summary": "Common Vulnerability Scoring System",
        "url": "https://www.first.org/cvss"
      }
    ],
    "title": ".NET Framework Remote Code Execution Vulnerability",
    "tracking": {
      "current_release_date": "2023-06-13T07:00:00.000Z",
      "generator": {
        "date": "2025-01-01T01:43:29.846Z",
        "engine": {
          "name": "MSRC Generator",
          "version": "1.0"
        }
      },
      "id": "msrc_CVE-2023-29326",
      "initial_release_date": "2023-06-13T07:00:00.000Z",
      "revision_history": [
        {
          "date": "2023-06-13T07:00:00.000Z",
          "legacy_version": "1",
          "number": "1",
          "summary": "Information published."
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.4644.0",
              "product_id": "24"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0",
              "product_id": "11676-11568"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.4644.0",
              "product_id": "25"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0",
              "product_id": "11676-11569"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.4644.0",
              "product_id": "26"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0",
              "product_id": "11676-11571"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.4644.0",
              "product_id": "27"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0",
              "product_id": "11676-11572"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.4644.0",
              "product_id": "28"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0",
              "product_id": "11676-11923"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.4644.0",
              "product_id": "29"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0",
              "product_id": "11676-11924"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.4644.0",
              "product_id": "30"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0",
              "product_id": "11676-11926"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.4644.0",
              "product_id": "31"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0",
              "product_id": "11676-11927"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.4644.0",
              "product_id": "32"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0",
              "product_id": "11676-11929"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.4644.0",
              "product_id": "33"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0",
              "product_id": "11676-11930"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.4644.0",
              "product_id": "34"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0",
              "product_id": "11676-11931"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.7.2 \u003c4.8.4644.0",
              "product_id": "19"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.7.2 4.8.4644.0",
              "product_id": "11677-11568"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.7.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.7.2 \u003c4.8.4644.0",
              "product_id": "20"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.7.2 4.8.4644.0",
              "product_id": "11677-11569"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.7.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.7.2 \u003c4.8.4644.0",
              "product_id": "21"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.7.2 4.8.4644.0",
              "product_id": "11677-11570"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.7.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.7.2 \u003c4.8.4644.0",
              "product_id": "22"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.7.2 4.8.4644.0",
              "product_id": "11677-11571"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.7.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.7.2 \u003c4.8.4644.0",
              "product_id": "23"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.7.2 4.8.4644.0",
              "product_id": "11677-11572"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.7.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c10.0.14393.5989",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 \u003c10.0.14393.5989",
              "product_id": "15"
            }
          },
          {
            "category": "product_version",
            "name": "10.0.14393.5989",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 10.0.14393.5989",
              "product_id": "11723-10852"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c10.0.14393.5989",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 \u003c10.0.14393.5989",
              "product_id": "16"
            }
          },
          {
            "category": "product_version",
            "name": "10.0.14393.5989",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 10.0.14393.5989",
              "product_id": "11723-10853"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c10.0.14393.5989",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 \u003c10.0.14393.5989",
              "product_id": "17"
            }
          },
          {
            "category": "product_version",
            "name": "10.0.14393.5989",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 10.0.14393.5989",
              "product_id": "11723-10816"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c10.0.14393.5989",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 \u003c10.0.14393.5989",
              "product_id": "18"
            }
          },
          {
            "category": "product_version",
            "name": "10.0.14393.5989",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 10.0.14393.5989",
              "product_id": "11723-10855"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.9166.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.9166.0",
              "product_id": "3"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.9166.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0",
              "product_id": "12079-11923"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.9166.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.9166.0",
              "product_id": "4"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.9166.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0",
              "product_id": "12079-11924"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.9166.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.9166.0",
              "product_id": "5"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.9166.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0",
              "product_id": "12079-11926"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.9166.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.9166.0",
              "product_id": "6"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.9166.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0",
              "product_id": "12079-11927"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.7.4050.0",
            "product": {
              "name": "Microsoft .NET Framework 2.0 Service Pack 2 \u003c4.7.4050.0",
              "product_id": "40"
            }
          },
          {
            "category": "product_version",
            "name": "4.7.4050.0",
            "product": {
              "name": "Microsoft .NET Framework 2.0 Service Pack 2 4.7.4050.0",
              "product_id": "9292-9312"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 2.0 Service Pack 2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.7.4050.0",
            "product": {
              "name": "Microsoft .NET Framework 2.0 Service Pack 2 \u003c4.7.4050.0",
              "product_id": "41"
            }
          },
          {
            "category": "product_version",
            "name": "4.7.4050.0",
            "product": {
              "name": "Microsoft .NET Framework 2.0 Service Pack 2 4.7.4050.0",
              "product_id": "9292-9318"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 2.0 Service Pack 2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.7.4050.0",
            "product": {
              "name": "Microsoft .NET Framework 3.0 Service Pack 2 \u003c4.7.4050.0",
              "product_id": "42"
            }
          },
          {
            "category": "product_version",
            "name": "4.7.4050.0",
            "product": {
              "name": "Microsoft .NET Framework 3.0 Service Pack 2 4.7.4050.0",
              "product_id": "9195-9312"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.0 Service Pack 2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.7.4050.0",
            "product": {
              "name": "Microsoft .NET Framework 3.0 Service Pack 2 \u003c4.7.4050.0",
              "product_id": "43"
            }
          },
          {
            "category": "product_version",
            "name": "4.7.4050.0",
            "product": {
              "name": "Microsoft .NET Framework 3.0 Service Pack 2 4.7.4050.0",
              "product_id": "9195-9318"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.0 Service Pack 2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c3.0.6920.8954; 2.0.50727.8970",
            "product": {
              "name": "Microsoft .NET Framework 3.5 \u003c3.0.6920.8954; 2.0.50727.8970",
              "product_id": "44"
            }
          },
          {
            "category": "product_version",
            "name": "3.0.6920.8954; 2.0.50727.8970",
            "product": {
              "name": "Microsoft .NET Framework 3.5 3.0.6920.8954; 2.0.50727.8970",
              "product_id": "2472-10378"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c3.0.6920.8954; 2.0.50727.8970",
            "product": {
              "name": "Microsoft .NET Framework 3.5 \u003c3.0.6920.8954; 2.0.50727.8970",
              "product_id": "45"
            }
          },
          {
            "category": "product_version",
            "name": "3.0.6920.8954; 2.0.50727.8970",
            "product": {
              "name": "Microsoft .NET Framework 3.5 3.0.6920.8954; 2.0.50727.8970",
              "product_id": "2472-10379"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c3.0.6920.8954; 2.0.50727.8970",
            "product": {
              "name": "Microsoft .NET Framework 3.5 \u003c3.0.6920.8954; 2.0.50727.8970",
              "product_id": "46"
            }
          },
          {
            "category": "product_version",
            "name": "3.0.6920.8954; 2.0.50727.8970",
            "product": {
              "name": "Microsoft .NET Framework 3.5 3.0.6920.8954; 2.0.50727.8970",
              "product_id": "2472-10483"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c3.0.6920.8954; 2.0.50727.8970",
            "product": {
              "name": "Microsoft .NET Framework 3.5 \u003c3.0.6920.8954; 2.0.50727.8970",
              "product_id": "47"
            }
          },
          {
            "category": "product_version",
            "name": "3.0.6920.8954; 2.0.50727.8970",
            "product": {
              "name": "Microsoft .NET Framework 3.5 3.0.6920.8954; 2.0.50727.8970",
              "product_id": "2472-10543"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c3.0.6920.8954; 2.0.50727.8970",
            "product": {
              "name": "Microsoft .NET Framework 3.5.1 \u003c3.0.6920.8954; 2.0.50727.8970",
              "product_id": "38"
            }
          },
          {
            "category": "product_version",
            "name": "3.0.6920.8954; 2.0.50727.8970",
            "product": {
              "name": "Microsoft .NET Framework 3.5.1 3.0.6920.8954; 2.0.50727.8970",
              "product_id": "9495-10051"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c3.0.6920.8954; 2.0.50727.8970",
            "product": {
              "name": "Microsoft .NET Framework 3.5.1 \u003c3.0.6920.8954; 2.0.50727.8970",
              "product_id": "39"
            }
          },
          {
            "category": "product_version",
            "name": "3.0.6920.8954; 2.0.50727.8970",
            "product": {
              "name": "Microsoft .NET Framework 3.5.1 3.0.6920.8954; 2.0.50727.8970",
              "product_id": "9495-10049"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.4644.0",
              "product_id": "35"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0",
              "product_id": "11676-12097"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.4644.0",
              "product_id": "36"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0",
              "product_id": "11676-12098"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.4644.0",
              "product_id": "37"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.4644.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.4644.0",
              "product_id": "11676-12099"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.9166.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.9166.0",
              "product_id": "7"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.9166.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0",
              "product_id": "12079-11929"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.9166.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.9166.0",
              "product_id": "8"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.9166.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0",
              "product_id": "12079-11930"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.9166.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.9166.0",
              "product_id": "9"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.9166.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0",
              "product_id": "12079-11931"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.9166.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.9166.0",
              "product_id": "10"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.9166.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0",
              "product_id": "12079-12085"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.9166.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.9166.0",
              "product_id": "11"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.9166.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0",
              "product_id": "12079-12086"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.9166.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.9166.0",
              "product_id": "12"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.9166.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0",
              "product_id": "12079-12097"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.9166.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.9166.0",
              "product_id": "13"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.9166.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0",
              "product_id": "12079-12098"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.9166.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.9166.0",
              "product_id": "14"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.9166.0",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.9166.0",
              "product_id": "12079-12099"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c10.0.10240.19983",
            "product": {
              "name": "Microsoft .NET Framework 3.5 and 4.6.2 \u003c10.0.10240.19983",
              "product_id": "1"
            }
          },
          {
            "category": "product_version",
            "name": "10.0.10240.19983",
            "product": {
              "name": "Microsoft .NET Framework 3.5 and 4.6.2 10.0.10240.19983",
              "product_id": "12128-10729"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 and 4.6.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c10.0.10240.19983",
            "product": {
              "name": "Microsoft .NET Framework 3.5 and 4.6.2 \u003c10.0.10240.19983",
              "product_id": "2"
            }
          },
          {
            "category": "product_version",
            "name": "10.0.10240.19983",
            "product": {
              "name": "Microsoft .NET Framework 3.5 and 4.6.2 10.0.10240.19983",
              "product_id": "12128-10735"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 and 4.6.2"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-29326",
      "notes": [
        {
          "category": "general",
          "text": "Microsoft",
          "title": "Assigning CNA"
        },
        {
          "category": "faq",
          "text": "The word Remote in the title refers to the location of the attacker. This type of exploit is sometimes referred to as Arbitrary Code Execution (ACE). The attack itself is carried out locally.\nFor example, when the score indicates that the Attack Vector is Local and User Interaction is Required, this could describe an exploit in which an attacker, through social engineering, convinces a victim to download and open a specially crafted file from a website which leads to a local attack on their computer.",
          "title": "According to the CVSS metric, the attack vector is local (AV:L). Why does the CVE title indicate that this is a remote code execution?"
        }
      ],
      "product_status": {
        "fixed": [
          "11676-11568",
          "11676-11569",
          "11676-11571",
          "11676-11572",
          "11676-11923",
          "11676-11924",
          "11676-11926",
          "11676-11927",
          "11676-11929",
          "11676-11930",
          "11676-11931",
          "11676-12097",
          "11676-12098",
          "11676-12099",
          "11677-11568",
          "11677-11569",
          "11677-11570",
          "11677-11571",
          "11677-11572",
          "11723-10816",
          "11723-10852",
          "11723-10853",
          "11723-10855",
          "12079-11923",
          "12079-11924",
          "12079-11926",
          "12079-11927",
          "12079-11929",
          "12079-11930",
          "12079-11931",
          "12079-12085",
          "12079-12086",
          "12079-12097",
          "12079-12098",
          "12079-12099",
          "12128-10729",
          "12128-10735",
          "2472-10378",
          "2472-10379",
          "2472-10483",
          "2472-10543",
          "9195-9312",
          "9195-9318",
          "9292-9312",
          "9292-9318",
          "9495-10049",
          "9495-10051"
        ],
        "known_affected": [
          "1",
          "2",
          "3",
          "4",
          "5",
          "6",
          "7",
          "8",
          "9",
          "10",
          "11",
          "12",
          "13",
          "14",
          "15",
          "16",
          "17",
          "18",
          "19",
          "20",
          "21",
          "22",
          "23",
          "24",
          "25",
          "26",
          "27",
          "28",
          "29",
          "30",
          "31",
          "32",
          "33",
          "34",
          "35",
          "36",
          "37",
          "38",
          "39",
          "40",
          "41",
          "42",
          "43",
          "44",
          "45",
          "46",
          "47"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-29326 .NET Framework Remote Code Execution Vulnerability - HTML",
          "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29326"
        },
        {
          "category": "self",
          "summary": "CVE-2023-29326 .NET Framework Remote Code Execution Vulnerability - CSAF",
          "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29326"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-06-13T07:00:00.000Z",
          "details": "4.8.4644.0:Security Update:https://support.microsoft.com/help/5027536",
          "product_ids": [
            "24",
            "25",
            "26",
            "27",
            "20"
          ],
          "url": "https://support.microsoft.com/help/5027536"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-13T07:00:00.000Z",
          "details": "4.8.4644.0:Security Update:https://support.microsoft.com/help/5027544",
          "product_ids": [
            "28",
            "29"
          ],
          "url": "https://support.microsoft.com/help/5027544"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-13T07:00:00.000Z",
          "details": "4.8.4644.0:Security Update:https://support.microsoft.com/help/5027539",
          "product_ids": [
            "30",
            "31"
          ],
          "url": "https://support.microsoft.com/help/5027539"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-13T07:00:00.000Z",
          "details": "4.8.4644.0:Security Update:https://support.microsoft.com/help/5027537",
          "product_ids": [
            "32",
            "33",
            "34"
          ],
          "url": "https://support.microsoft.com/help/5027537"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-13T07:00:00.000Z",
          "details": "4.7.4050.0:Security Update:https://support.microsoft.com/help/5027536",
          "product_ids": [
            "19",
            "21",
            "22",
            "23"
          ],
          "url": "https://support.microsoft.com/help/5027536"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-13T07:00:00.000Z",
          "details": "10.0.14393.5989:Security Update:https://support.microsoft.com/help/5027219",
          "product_ids": [
            "15",
            "16",
            "17",
            "18"
          ],
          "url": "https://support.microsoft.com/help/5027219"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-13T07:00:00.000Z",
          "details": "4.8.9166.0:Security Update:https://support.microsoft.com/help/5027544",
          "product_ids": [
            "3",
            "4"
          ],
          "url": "https://support.microsoft.com/help/5027544"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-13T07:00:00.000Z",
          "details": "4.8.9166.0:Security Update:https://support.microsoft.com/help/5027539",
          "product_ids": [
            "5",
            "6"
          ],
          "url": "https://support.microsoft.com/help/5027539"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-13T07:00:00.000Z",
          "details": "3.0.6920.8954; 2.0.50727.8970:Monthly Rollup:https://support.microsoft.com/help/5027543",
          "product_ids": [
            "40",
            "41",
            "42",
            "43"
          ],
          "url": "https://support.microsoft.com/help/5027543"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-13T07:00:00.000Z",
          "details": "3.0.6920.8954; 2.0.50727.8970:Security Only:https://support.microsoft.com/help/5027534",
          "product_ids": [
            "40",
            "42"
          ],
          "url": "https://support.microsoft.com/help/5027534"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-13T07:00:00.000Z",
          "details": "4.7.4050.0:Security Only:https://support.microsoft.com/help/5027534",
          "product_ids": [
            "41",
            "43"
          ],
          "url": "https://support.microsoft.com/help/5027534"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-13T07:00:00.000Z",
          "details": "3.0.6920.8954; 2.0.50727.8970:Monthly Rollup:https://support.microsoft.com/help/5027541",
          "product_ids": [
            "44",
            "45"
          ],
          "url": "https://support.microsoft.com/help/5027541"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-13T07:00:00.000Z",
          "details": "3.0.6920.8954; 2.0.50727.8970:Security Only:https://support.microsoft.com/help/5027532",
          "product_ids": [
            "44",
            "45"
          ],
          "url": "https://support.microsoft.com/help/5027532"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-13T07:00:00.000Z",
          "details": "3.0.6920.8954; 2.0.50727.8970:Monthly Rollup:https://support.microsoft.com/help/5027542",
          "product_ids": [
            "46",
            "47"
          ],
          "url": "https://support.microsoft.com/help/5027542"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-13T07:00:00.000Z",
          "details": "3.0.6920.8954; 2.0.50727.8970:Security Only:https://support.microsoft.com/help/5027533",
          "product_ids": [
            "46",
            "47"
          ],
          "url": "https://support.microsoft.com/help/5027533"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-13T07:00:00.000Z",
          "details": "3.0.6920.8954; 2.0.50727.8970:Monthly Rollup:https://support.microsoft.com/help/5027540",
          "product_ids": [
            "38",
            "39"
          ],
          "url": "https://support.microsoft.com/help/5027540"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-13T07:00:00.000Z",
          "details": "3.0.6920.8954; 2.0.50727.8970:Security Only:https://support.microsoft.com/help/5027531",
          "product_ids": [
            "38",
            "39"
          ],
          "url": "https://support.microsoft.com/help/5027531"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-13T07:00:00.000Z",
          "details": "4.8.4644.0:Security Update:https://support.microsoft.com/help/5027538",
          "product_ids": [
            "35",
            "36",
            "37"
          ],
          "url": "https://support.microsoft.com/help/5027538"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-13T07:00:00.000Z",
          "details": "4.8.9166.0:Security Update:https://support.microsoft.com/help/5027537",
          "product_ids": [
            "7",
            "8",
            "9"
          ],
          "url": "https://support.microsoft.com/help/5027537"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-13T07:00:00.000Z",
          "details": "4.8.9166.0:Security Update:https://support.microsoft.com/help/5027119",
          "product_ids": [
            "10",
            "11"
          ],
          "url": "https://support.microsoft.com/help/5027119"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-13T07:00:00.000Z",
          "details": "4.8.9166.0:Security Update:https://support.microsoft.com/help/5027538",
          "product_ids": [
            "12",
            "13",
            "14"
          ],
          "url": "https://support.microsoft.com/help/5027538"
        },
        {
          "category": "vendor_fix",
          "date": "2023-06-13T07:00:00.000Z",
          "details": "10.0.10240.19983:Security Update:https://support.microsoft.com/help/5027230",
          "product_ids": [
            "1",
            "2"
          ],
          "url": "https://support.microsoft.com/help/5027230"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalsScore": 0.0,
            "exploitCodeMaturity": "UNPROVEN",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "remediationLevel": "OFFICIAL_FIX",
            "reportConfidence": "CONFIRMED",
            "scope": "UNCHANGED",
            "temporalScore": 6.8,
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
            "version": "3.1"
          },
          "products": [
            "1",
            "2",
            "3",
            "4",
            "5",
            "6",
            "7",
            "8",
            "9",
            "10",
            "11",
            "12",
            "13",
            "14",
            "15",
            "16",
            "17",
            "18",
            "19",
            "20",
            "21",
            "22",
            "23",
            "24",
            "25",
            "26",
            "27",
            "28",
            "29",
            "30",
            "31",
            "32",
            "33",
            "34",
            "35",
            "36",
            "37",
            "38",
            "39",
            "40",
            "41",
            "42",
            "43",
            "44",
            "45",
            "46",
            "47"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Remote Code Execution"
        },
        {
          "category": "exploit_status",
          "details": "Exploited:No;Latest Software Release:Exploitation Less Likely"
        }
      ],
      "title": ".NET Framework Remote Code Execution Vulnerability"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2023-29326 (GCVE-0-2023-29326)

Solution

Solution

Tags

Sightings

Nomenclature