Vulnerability-Lookup

CVE-2024-29059 (GCVE-0-2024-29059)

Vulnerability from cvelistv5 – Published: 2024-03-22 23:09 – Updated: 2025-10-21 23:05

CISA KEV KEVintel KEV

Title

.NET Framework Information Disclosure Vulnerability

Summary

.NET Framework Information Disclosure Vulnerability

Severity

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

SSVC

Exploitation: active Automatable: yes Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-209 - Generation of Error Message Containing Sensitive Information

Assigner

microsoft

References

2 references

URL	Tags
https://msrc.microsoft.com/update-guide/vulnerabi…	vendor-advisory
https://www.cisa.gov/known-exploited-vulnerabilit…	government-resource

Impacted products

11 products

Vendor	Product	Version
Microsoft	Microsoft .NET Framework 4.8	Affected: 4.8.0 , < 4.8.04690.02 (custom)
Microsoft	Microsoft .NET Framework 3.5 AND 4.8	Affected: 4.8.0 , < 4.8.04690.02 (custom)
Microsoft	Microsoft .NET Framework 3.5 AND 4.7.2	Affected: 4.7.0 , < 4.7.04081.03 (custom)
Microsoft	Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2	Affected: 4.7.0 , < 4.7.04081.03 (custom)
Microsoft	Microsoft .NET Framework 3.5 AND 4.8.1	Affected: 4.8.1 , < 4.8.09214.01 (custom)
Microsoft	Microsoft .NET Framework 4.6.2	Affected: 4.7.0 , < 4.7.04081.03 (custom)
Microsoft	Microsoft .NET Framework 3.5 AND 4.6/4.6.2	Affected: 10.0.0 , < 10.0.10240.20402 (custom)
Microsoft	Microsoft .NET Framework 2.0 Service Pack 2	Affected: 2.0.0 , < 3.0.50727.8976 (custom)
Microsoft	Microsoft .NET Framework 3.0 Service Pack 2	Affected: 3.0.0 , < 3.0.50727.8976 (custom)
Microsoft	Microsoft .NET Framework 3.5	Affected: 3.5.0 , < 3.0.50727.8976 (custom)
Microsoft	Microsoft .NET Framework 3.5.1	Affected: 3.5.0 , < 3.0.30729.8959 (custom)

Date Public

2024-03-22 07:00

CISA KEV

Known Exploited Vulnerability - GCVE BCP-07 Compliant

KEV entry ID: 124720e9-3e8b-4ea1-94a5-8763c8d350e8

Vulnerability ID: CVE-2024-29059

Status: Confirmed

Status Updated: 2025-02-04 00:00 UTC

Exploited: Yes

Timestamps

First Seen: 2025-02-04

Asserted: 2025-02-04

Scope

Notes: KEV entry: Microsoft .NET Framework Information Disclosure Vulnerability | Affected: Microsoft / .NET Framework | Description: Microsoft .NET Framework contains an information disclosure vulnerability that exposes the ObjRef URI to an attacker, ultimately enabling remote code execution. | Required action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. | Due date: 2025-02-25 | Known ransomware campaign use (KEV): Unknown | Notes (KEV): https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059 ; https://nvd.nist.gov/vuln/detail/CVE-2024-29059

Evidence

Type: Vendor Report

Signal: Successful Exploitation

Confidence: 80%

Source: cisa-kev

Details

Cwes	CWE-209
Feed	CISA Known Exploited Vulnerabilities Catalog
Product	.NET Framework
Due Date	2025-02-25
Date Added	2025-02-04
Vendorproject	Microsoft
Vulnerabilityname	Microsoft .NET Framework Information Disclosure Vulnerability
Knownransomwarecampaignuse	Unknown

References

CVE-2024-29059

Created: 2026-02-02 12:26 UTC | Updated: 2026-02-06 07:17 UTC

KEVintel KEV

Known Exploited Vulnerability - GCVE BCP-07 Compliant

KEV entry ID: d4ce30b3-d723-4de7-9120-324c22d2cae1

Vulnerability ID: CVE-2024-29059

Status: Confirmed

Status Updated: 2025-02-04 00:00 UTC

Exploited: Yes

Timestamps

First Seen: 2025-02-04

Asserted: 2025-02-04

Scope

Notes: KEVIntel entry: .NET Framework Information Disclosure Vulnerability | Affected: Microsoft / Microsoft .NET Framework 4.8, Microsoft .NET Framework 3.5 AND 4.8, Microsoft .NET Framework 3.5 AND 4.7.2, Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2, Microsoft .NET Framework 3.5 AND 4.8.1, Microsoft .NET Framework 4.6.2, Microsoft .NET Framework 3.5 AND 4.6/4.6.2, Microsoft .NET Framework 2.0 Service Pack 2, Microsoft .NET Framework 3.0 Service Pack 2, Microsoft .NET Framework 3.5, Microsoft .NET Framework 3.5.1 | CVSS: 7.5 (HIGH) | EPSS: 0.98832 | Used in malware: unknown | Not yet in CISA KEV: False

Evidence

Type: Public Report

Signal: Successful Exploitation

Confidence: 70%

Source: kevintel

Details

Feed	KEVIntel (kevintel.com)
Title	.NET Framework Information Disclosure Vulnerability
Vendor	Microsoft
Product	Microsoft .NET Framework 4.8, Microsoft .NET Framework 3.5 AND 4.8, Microsoft .NET Framework 3.5 AND 4.7.2, Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2, Microsoft .NET Framework 3.5 AND 4.8.1, Microsoft .NET Framework 4.6.2, Microsoft .NET Framework 3.5 AND 4.6/4.6.2, Microsoft .NET Framework 2.0 Service Pack 2, Microsoft .NET Framework 3.0 Service Pack 2, Microsoft .NET Framework 3.5, Microsoft .NET Framework 3.5.1
Added Date	2025-02-04T00:00:00.000Z
Cvss Score	7.5
Epss Score	0.98832
Cvss Severity	HIGH
Epss Percentile	0.9992
Used In Malware	unknown
Ahead Of Cisa Kev	None
Not Yet In Cisa Kev	False

References

Created: 2026-06-19 12:46 UTC | Updated: 2026-06-19 12:46 UTC

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T01:03:51.634Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": ".NET Framework Information Disclosure Vulnerability",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-29059",
                "options": [
                  {
                    "Exploitation": "active"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-02-04T15:47:39.403090Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          },
          {
            "other": {
              "content": {
                "dateAdded": "2025-02-04",
                "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-29059"
              },
              "type": "kev"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-10-21T23:05:22.579Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "references": [
          {
            "tags": [
              "government-resource"
            ],
            "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-29059"
          }
        ],
        "timeline": [
          {
            "lang": "en",
            "time": "2025-02-04T00:00:00.000Z",
            "value": "CVE-2024-29059 added to CISA KEV"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "platforms": [
            "Windows 10 Version 1607 for 32-bit Systems",
            "Windows 10 Version 1607 for x64-based Systems",
            "Windows Server 2016",
            "Windows Server 2016 (Server Core installation)",
            "Windows Server 2008 R2 for x64-based Systems Service Pack 1",
            "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)",
            "Windows Server 2012",
            "Windows Server 2012 (Server Core installation)",
            "Windows Server 2012 R2",
            "Windows Server 2012 R2 (Server Core installation)"
          ],
          "product": "Microsoft .NET Framework 4.8",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "4.8.04690.02",
              "status": "affected",
              "version": "4.8.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows 10 Version 1809 for 32-bit Systems",
            "Windows 10 Version 1809 for x64-based Systems",
            "Windows Server 2019",
            "Windows Server 2019 (Server Core installation)",
            "Windows Server 2022",
            "Windows Server 2022 (Server Core installation)",
            "Windows 11 version 21H2 for x64-based Systems",
            "Windows 11 version 21H2 for ARM64-based Systems",
            "Windows 10 Version 21H2 for 32-bit Systems",
            "Windows 10 Version 21H2 for ARM64-based Systems",
            "Windows 10 Version 21H2 for x64-based Systems",
            "Windows 10 Version 22H2 for x64-based Systems",
            "Windows 10 Version 22H2 for ARM64-based Systems",
            "Windows 10 Version 22H2 for 32-bit Systems"
          ],
          "product": "Microsoft .NET Framework 3.5 AND 4.8",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "4.8.04690.02",
              "status": "affected",
              "version": "4.8.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows 10 Version 1809 for x64-based Systems",
            "Windows Server 2019",
            "Windows Server 2019 (Server Core installation)",
            "Windows 10 Version 1607 for 32-bit Systems",
            "Windows 10 Version 1607 for x64-based Systems",
            "Windows Server 2016",
            "Windows Server 2016 (Server Core installation)"
          ],
          "product": "Microsoft .NET Framework 3.5 AND 4.7.2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "4.7.04081.03",
              "status": "affected",
              "version": "4.7.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows Server 2008 R2 for x64-based Systems Service Pack 1",
            "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)",
            "Windows Server 2012",
            "Windows Server 2012 (Server Core installation)",
            "Windows Server 2012 R2",
            "Windows Server 2012 R2 (Server Core installation)"
          ],
          "product": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "4.7.04081.03",
              "status": "affected",
              "version": "4.7.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows Server 2022",
            "Windows Server 2022 (Server Core installation)",
            "Windows 11 version 21H2 for x64-based Systems",
            "Windows 11 version 21H2 for ARM64-based Systems",
            "Windows 10 Version 21H2 for 32-bit Systems",
            "Windows 10 Version 21H2 for ARM64-based Systems",
            "Windows 10 Version 21H2 for x64-based Systems",
            "Windows 11 Version 22H2 for ARM64-based Systems",
            "Windows 11 Version 22H2 for x64-based Systems",
            "Windows 10 Version 22H2 for x64-based Systems",
            "Windows 10 Version 22H2 for ARM64-based Systems",
            "Windows 10 Version 22H2 for 32-bit Systems",
            "Windows 11 Version 23H2 for ARM64-based Systems",
            "Windows 11 Version 23H2 for x64-based Systems",
            "Windows Server 2022, 23H2 Edition (Server Core installation)"
          ],
          "product": "Microsoft .NET Framework 3.5 AND 4.8.1",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "4.8.09214.01",
              "status": "affected",
              "version": "4.8.1",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows Server 2008 for 32-bit Systems Service Pack 2",
            "Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)",
            "Windows Server 2008 for x64-based Systems Service Pack 2",
            "Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)"
          ],
          "product": "Microsoft .NET Framework 4.6.2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "4.7.04081.03",
              "status": "affected",
              "version": "4.7.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows 10 for 32-bit Systems",
            "Windows 10 for x64-based Systems"
          ],
          "product": "Microsoft .NET Framework 3.5 AND 4.6/4.6.2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.10240.20402",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows Server 2008 for 32-bit Systems Service Pack 2",
            "Windows Server 2008 for x64-based Systems Service Pack 2"
          ],
          "product": "Microsoft .NET Framework 2.0 Service Pack 2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "3.0.50727.8976",
              "status": "affected",
              "version": "2.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows Server 2008 for 32-bit Systems Service Pack 2",
            "Windows Server 2008 for x64-based Systems Service Pack 2"
          ],
          "product": "Microsoft .NET Framework 3.0 Service Pack 2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "3.0.50727.8976",
              "status": "affected",
              "version": "3.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows Server 2012",
            "Windows Server 2012 (Server Core installation)",
            "Windows Server 2012 R2",
            "Windows Server 2012 R2 (Server Core installation)"
          ],
          "product": "Microsoft .NET Framework 3.5",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "3.0.50727.8976",
              "status": "affected",
              "version": "3.5.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows Server 2008 R2 for x64-based Systems Service Pack 1",
            "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)"
          ],
          "product": "Microsoft .NET Framework 3.5.1",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "3.0.30729.8959",
              "status": "affected",
              "version": "3.5.0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.8.04690.02",
                  "versionStartIncluding": "4.8.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.8.04690.02",
                  "versionStartIncluding": "4.8.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.7.04081.03",
                  "versionStartIncluding": "4.7.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.7.04081.03",
                  "versionStartIncluding": "4.7.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.8.09214.01",
                  "versionStartIncluding": "4.8.1",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.7.04081.03",
                  "versionStartIncluding": "4.7.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "10.0.10240.20402",
                  "versionStartIncluding": "10.0.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:microsoft:.net:*:sp2:*:*:*:*:*:*",
                  "versionEndExcluding": "3.0.50727.8976",
                  "versionStartIncluding": "2.0.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:microsoft:.net:*:sp2:*:*:*:*:*:*",
                  "versionEndExcluding": "3.0.50727.8976",
                  "versionStartIncluding": "3.0.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "3.0.50727.8976",
                  "versionStartIncluding": "3.5.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "3.0.30729.8959",
                  "versionStartIncluding": "3.5.0",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "datePublic": "2024-03-22T07:00:00.000Z",
      "descriptions": [
        {
          "lang": "en-US",
          "value": ".NET Framework Information Disclosure Vulnerability"
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en-US",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-209",
              "description": "CWE-209: Generation of Error Message Containing Sensitive Information",
              "lang": "en-US",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-03T00:47:14.222Z",
        "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "shortName": "microsoft"
      },
      "references": [
        {
          "name": ".NET Framework Information Disclosure Vulnerability",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059"
        }
      ],
      "title": ".NET Framework Information Disclosure Vulnerability"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
    "assignerShortName": "microsoft",
    "cveId": "CVE-2024-29059",
    "datePublished": "2024-03-22T23:09:05.745Z",
    "dateReserved": "2024-03-14T23:05:27.954Z",
    "dateUpdated": "2025-10-21T23:05:22.579Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "cisa_known_exploited": {
      "cveID": "CVE-2024-29059",
      "cwes": "[\"CWE-209\"]",
      "dateAdded": "2025-02-04",
      "dueDate": "2025-02-25",
      "knownRansomwareCampaignUse": "Unknown",
      "notes": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059 ; https://nvd.nist.gov/vuln/detail/CVE-2024-29059",
      "product": ".NET Framework",
      "requiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.",
      "shortDescription": "Microsoft .NET Framework contains an information disclosure vulnerability that exposes the ObjRef URI to an attacker, ultimately enabling remote code execution.",
      "vendorProject": "Microsoft",
      "vulnerabilityName": "Microsoft .NET Framework Information Disclosure Vulnerability"
    },
    "epss": {
      "cve": "CVE-2024-29059",
      "date": "2026-06-19",
      "epss": "0.98832",
      "percentile": "0.9992"
    },
    "fkie_nvd": {
      "configurations": "[{\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*\", \"matchCriteriaId\": \"23317443-1968-4791-9F20-AD3B308A83D1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"61019899-D7AF-46E4-A72C-D189180F66AB\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"306B7CE6-8239-4AED-9ED4-4C9F5B349F58\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB79EE26-FC32-417D-A49C-A1A63165A968\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*\", \"matchCriteriaId\": \"23317443-1968-4791-9F20-AD3B308A83D1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2D3F18AF-84ED-473B-A8DF-65EB23C475AF\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"61019899-D7AF-46E4-A72C-D189180F66AB\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2E332666-2E03-468E-BC30-299816D6E8ED\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2F513002-D8C1-4D3A-9F79-4B52498F67E9\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4D8DC08D-A860-493A-8AA6-1AD4A0A511AD\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BB4AE761-6FAC-4000-A63D-42CE3FAB8412\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB79EE26-FC32-417D-A49C-A1A63165A968\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"821614DD-37DD-44E2-A8A4-FE8D23A33C3C\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:3.5.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8EDC4407-7E92-4E60-82F0-0C87D1860D3A\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\", \"matchCriteriaId\": \"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB18C4CE-5917-401E-ACF7-2747084FD36E\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:*\", \"matchCriteriaId\": \"42A6DF09-B8E1-414D-97E7-453566055279\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:3.0:sp2:*:*:*:*:*:*\", \"matchCriteriaId\": \"D400E856-2B2E-4CEA-8CA5-309FDF371CEA\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*\", \"matchCriteriaId\": \"5F422A8C-2C4E-42C8-B420-E0728037E15C\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*\", \"matchCriteriaId\": \"23317443-1968-4791-9F20-AD3B308A83D1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"280FE663-23BE-45D2-9B31-5F577E390B48\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x64:*\", \"matchCriteriaId\": \"A045AC0A-471E-444C-B3B0-4CABC23E8CFB\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x86:*\", \"matchCriteriaId\": \"28A7FEE9-B473-48A0-B0ED-A5CC1E44194C\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*\", \"matchCriteriaId\": \"5F422A8C-2C4E-42C8-B420-E0728037E15C\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*\", \"matchCriteriaId\": \"23317443-1968-4791-9F20-AD3B308A83D1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.8.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"934D4E46-12C1-41DC-A28C-A2C430E965E4\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2F513002-D8C1-4D3A-9F79-4B52498F67E9\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4D8DC08D-A860-493A-8AA6-1AD4A0A511AD\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BB4AE761-6FAC-4000-A63D-42CE3FAB8412\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D4793BFB-2E4E-4067-87A5-4B8749025CA3\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_11_23h2:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"42D329B2-432D-4029-87EB-4C3C5F55CD95\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"821614DD-37DD-44E2-A8A4-FE8D23A33C3C\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2022_23h2:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"75CCACE6-A0EE-4A6F-BD5A-7AA504B02717\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"734112B3-1383-4BE3-8721-C0F84566B764\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"36B0E40A-84EF-4099-A395-75D6B8CDA196\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\", \"matchCriteriaId\": \"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB18C4CE-5917-401E-ACF7-2747084FD36E\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2D3F18AF-84ED-473B-A8DF-65EB23C475AF\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"61019899-D7AF-46E4-A72C-D189180F66AB\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\", \"matchCriteriaId\": \"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB18C4CE-5917-401E-ACF7-2747084FD36E\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \".NET Framework Information Disclosure Vulnerability\"}, {\"lang\": \"es\", \"value\": \"Vulnerabilidad de divulgaci\\u00f3n de informaci\\u00f3n de .NET Framework\"}]",
      "id": "CVE-2024-29059",
      "lastModified": "2025-01-08T18:33:02.303",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"secure@microsoft.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 3.6}]}",
      "published": "2024-03-23T00:15:09.150",
      "references": "[{\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059\", \"source\": \"secure@microsoft.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
      "sourceIdentifier": "secure@microsoft.com",
      "vulnStatus": "Analyzed",
      "weaknesses": "[{\"source\": \"secure@microsoft.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-209\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-209\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2024-29059\",\"sourceIdentifier\":\"secure@microsoft.com\",\"published\":\"2024-03-23T00:15:09.150\",\"lastModified\":\"2025-10-28T14:24:09.070\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\".NET Framework Information Disclosure Vulnerability\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad de divulgaci\u00f3n de informaci\u00f3n de .NET Framework\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secure@microsoft.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"cisaExploitAdd\":\"2025-02-04\",\"cisaActionDue\":\"2025-02-25\",\"cisaRequiredAction\":\"Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.\",\"cisaVulnerabilityName\":\"Microsoft .NET Framework Information Disclosure Vulnerability\",\"weaknesses\":[{\"source\":\"secure@microsoft.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-209\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-209\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"23317443-1968-4791-9F20-AD3B308A83D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"61019899-D7AF-46E4-A72C-D189180F66AB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"306B7CE6-8239-4AED-9ED4-4C9F5B349F58\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB79EE26-FC32-417D-A49C-A1A63165A968\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"23317443-1968-4791-9F20-AD3B308A83D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2D3F18AF-84ED-473B-A8DF-65EB23C475AF\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"61019899-D7AF-46E4-A72C-D189180F66AB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2E332666-2E03-468E-BC30-299816D6E8ED\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F513002-D8C1-4D3A-9F79-4B52498F67E9\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4D8DC08D-A860-493A-8AA6-1AD4A0A511AD\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BB4AE761-6FAC-4000-A63D-42CE3FAB8412\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB79EE26-FC32-417D-A49C-A1A63165A968\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"821614DD-37DD-44E2-A8A4-FE8D23A33C3C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8EDC4407-7E92-4E60-82F0-0C87D1860D3A\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\",\"matchCriteriaId\":\"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB18C4CE-5917-401E-ACF7-2747084FD36E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:*\",\"matchCriteriaId\":\"42A6DF09-B8E1-414D-97E7-453566055279\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.0:sp2:*:*:*:*:*:*\",\"matchCriteriaId\":\"D400E856-2B2E-4CEA-8CA5-309FDF371CEA\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F422A8C-2C4E-42C8-B420-E0728037E15C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"23317443-1968-4791-9F20-AD3B308A83D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"280FE663-23BE-45D2-9B31-5F577E390B48\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x64:*\",\"matchCriteriaId\":\"A045AC0A-471E-444C-B3B0-4CABC23E8CFB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x86:*\",\"matchCriteriaId\":\"28A7FEE9-B473-48A0-B0ED-A5CC1E44194C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F422A8C-2C4E-42C8-B420-E0728037E15C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"23317443-1968-4791-9F20-AD3B308A83D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.8.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"934D4E46-12C1-41DC-A28C-A2C430E965E4\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F513002-D8C1-4D3A-9F79-4B52498F67E9\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4D8DC08D-A860-493A-8AA6-1AD4A0A511AD\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BB4AE761-6FAC-4000-A63D-42CE3FAB8412\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D4793BFB-2E4E-4067-87A5-4B8749025CA3\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_23h2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"42D329B2-432D-4029-87EB-4C3C5F55CD95\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"821614DD-37DD-44E2-A8A4-FE8D23A33C3C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2022_23h2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"75CCACE6-A0EE-4A6F-BD5A-7AA504B02717\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"734112B3-1383-4BE3-8721-C0F84566B764\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"36B0E40A-84EF-4099-A395-75D6B8CDA196\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3EF7A75E-EE27-4AA7-8D84-9D696728A4CE\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\",\"matchCriteriaId\":\"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB18C4CE-5917-401E-ACF7-2747084FD36E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2D3F18AF-84ED-473B-A8DF-65EB23C475AF\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"61019899-D7AF-46E4-A72C-D189180F66AB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*\",\"matchCriteriaId\":\"AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7DF96F8-BA6A-4780-9CA3-F719B3F81074\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB18C4CE-5917-401E-ACF7-2747084FD36E\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7\"}]}]}],\"references\":[{\"url\":\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059\",\"source\":\"secure@microsoft.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-29059\",\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"tags\":[\"US Government Resource\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059\", \"name\": \".NET Framework Information Disclosure Vulnerability\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T01:03:51.634Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-29059\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"active\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-02-04T15:47:39.403090Z\"}}}, {\"other\": {\"type\": \"kev\", \"content\": {\"dateAdded\": \"2025-02-04\", \"reference\": \"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-29059\"}}}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2025-02-04T00:00:00.000Z\", \"value\": \"CVE-2024-29059 added to CISA KEV\"}], \"references\": [{\"url\": \"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-29059\", \"tags\": [\"government-resource\"]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-08-12T17:38:47.084Z\"}}], \"cna\": {\"title\": \".NET Framework Information Disclosure Vulnerability\", \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"version\": \"3.1\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C\"}, \"scenarios\": [{\"lang\": \"en-US\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"Microsoft\", \"product\": \"Microsoft .NET Framework 4.8\", \"versions\": [{\"status\": \"affected\", \"version\": \"4.8.0\", \"lessThan\": \"4.8.04690.02\", \"versionType\": \"custom\"}], \"platforms\": [\"Windows 10 Version 1607 for 32-bit Systems\", \"Windows 10 Version 1607 for x64-based Systems\", \"Windows Server 2016\", \"Windows Server 2016 (Server Core installation)\", \"Windows Server 2008 R2 for x64-based Systems Service Pack 1\", \"Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)\", \"Windows Server 2012\", \"Windows Server 2012 (Server Core installation)\", \"Windows Server 2012 R2\", \"Windows Server 2012 R2 (Server Core installation)\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft .NET Framework 3.5 AND 4.8\", \"versions\": [{\"status\": \"affected\", \"version\": \"4.8.0\", \"lessThan\": \"4.8.04690.02\", \"versionType\": \"custom\"}], \"platforms\": [\"Windows 10 Version 1809 for 32-bit Systems\", \"Windows 10 Version 1809 for x64-based Systems\", \"Windows Server 2019\", \"Windows Server 2019 (Server Core installation)\", \"Windows Server 2022\", \"Windows Server 2022 (Server Core installation)\", \"Windows 11 version 21H2 for x64-based Systems\", \"Windows 11 version 21H2 for ARM64-based Systems\", \"Windows 10 Version 21H2 for 32-bit Systems\", \"Windows 10 Version 21H2 for ARM64-based Systems\", \"Windows 10 Version 21H2 for x64-based Systems\", \"Windows 10 Version 22H2 for x64-based Systems\", \"Windows 10 Version 22H2 for ARM64-based Systems\", \"Windows 10 Version 22H2 for 32-bit Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft .NET Framework 3.5 AND 4.7.2\", \"versions\": [{\"status\": \"affected\", \"version\": \"4.7.0\", \"lessThan\": \"4.7.04081.03\", \"versionType\": \"custom\"}], \"platforms\": [\"Windows 10 Version 1809 for x64-based Systems\", \"Windows Server 2019\", \"Windows Server 2019 (Server Core installation)\", \"Windows 10 Version 1607 for 32-bit Systems\", \"Windows 10 Version 1607 for x64-based Systems\", \"Windows Server 2016\", \"Windows Server 2016 (Server Core installation)\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2\", \"versions\": [{\"status\": \"affected\", \"version\": \"4.7.0\", \"lessThan\": \"4.7.04081.03\", \"versionType\": \"custom\"}], \"platforms\": [\"Windows Server 2008 R2 for x64-based Systems Service Pack 1\", \"Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)\", \"Windows Server 2012\", \"Windows Server 2012 (Server Core installation)\", \"Windows Server 2012 R2\", \"Windows Server 2012 R2 (Server Core installation)\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft .NET Framework 3.5 AND 4.8.1\", \"versions\": [{\"status\": \"affected\", \"version\": \"4.8.1\", \"lessThan\": \"4.8.09214.01\", \"versionType\": \"custom\"}], \"platforms\": [\"Windows Server 2022\", \"Windows Server 2022 (Server Core installation)\", \"Windows 11 version 21H2 for x64-based Systems\", \"Windows 11 version 21H2 for ARM64-based Systems\", \"Windows 10 Version 21H2 for 32-bit Systems\", \"Windows 10 Version 21H2 for ARM64-based Systems\", \"Windows 10 Version 21H2 for x64-based Systems\", \"Windows 11 Version 22H2 for ARM64-based Systems\", \"Windows 11 Version 22H2 for x64-based Systems\", \"Windows 10 Version 22H2 for x64-based Systems\", \"Windows 10 Version 22H2 for ARM64-based Systems\", \"Windows 10 Version 22H2 for 32-bit Systems\", \"Windows 11 Version 23H2 for ARM64-based Systems\", \"Windows 11 Version 23H2 for x64-based Systems\", \"Windows Server 2022, 23H2 Edition (Server Core installation)\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft .NET Framework 4.6.2\", \"versions\": [{\"status\": \"affected\", \"version\": \"4.7.0\", \"lessThan\": \"4.7.04081.03\", \"versionType\": \"custom\"}], \"platforms\": [\"Windows Server 2008 for 32-bit Systems Service Pack 2\", \"Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)\", \"Windows Server 2008 for x64-based Systems Service Pack 2\", \"Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft .NET Framework 3.5 AND 4.6/4.6.2\", \"versions\": [{\"status\": \"affected\", \"version\": \"10.0.0\", \"lessThan\": \"10.0.10240.20402\", \"versionType\": \"custom\"}], \"platforms\": [\"Windows 10 for 32-bit Systems\", \"Windows 10 for x64-based Systems\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft .NET Framework 2.0 Service Pack 2\", \"versions\": [{\"status\": \"affected\", \"version\": \"2.0.0\", \"lessThan\": \"3.0.50727.8976\", \"versionType\": \"custom\"}], \"platforms\": [\"Windows Server 2008 for 32-bit Systems Service Pack 2\", \"Windows Server 2008 for x64-based Systems Service Pack 2\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft .NET Framework 3.0 Service Pack 2\", \"versions\": [{\"status\": \"affected\", \"version\": \"3.0.0\", \"lessThan\": \"3.0.50727.8976\", \"versionType\": \"custom\"}], \"platforms\": [\"Windows Server 2008 for 32-bit Systems Service Pack 2\", \"Windows Server 2008 for x64-based Systems Service Pack 2\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft .NET Framework 3.5\", \"versions\": [{\"status\": \"affected\", \"version\": \"3.5.0\", \"lessThan\": \"3.0.50727.8976\", \"versionType\": \"custom\"}], \"platforms\": [\"Windows Server 2012\", \"Windows Server 2012 (Server Core installation)\", \"Windows Server 2012 R2\", \"Windows Server 2012 R2 (Server Core installation)\"]}, {\"vendor\": \"Microsoft\", \"product\": \"Microsoft .NET Framework 3.5.1\", \"versions\": [{\"status\": \"affected\", \"version\": \"3.5.0\", \"lessThan\": \"3.0.30729.8959\", \"versionType\": \"custom\"}], \"platforms\": [\"Windows Server 2008 R2 for x64-based Systems Service Pack 1\", \"Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)\"]}], \"datePublic\": \"2024-03-22T07:00:00.000Z\", \"references\": [{\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059\", \"name\": \".NET Framework Information Disclosure Vulnerability\", \"tags\": [\"vendor-advisory\"]}], \"descriptions\": [{\"lang\": \"en-US\", \"value\": \".NET Framework Information Disclosure Vulnerability\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en-US\", \"type\": \"CWE\", \"cweId\": \"CWE-209\", \"description\": \"CWE-209: Generation of Error Message Containing Sensitive Information\"}]}], \"cpeApplicability\": [{\"nodes\": [{\"negate\": false, \"cpeMatch\": [{\"criteria\": \"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"4.8.04690.02\", \"versionStartIncluding\": \"4.8.0\"}, {\"criteria\": \"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"4.8.04690.02\", \"versionStartIncluding\": \"4.8.0\"}, {\"criteria\": \"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"4.7.04081.03\", \"versionStartIncluding\": \"4.7.0\"}, {\"criteria\": \"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"4.7.04081.03\", \"versionStartIncluding\": \"4.7.0\"}, {\"criteria\": \"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"4.8.09214.01\", \"versionStartIncluding\": \"4.8.1\"}, {\"criteria\": \"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"4.7.04081.03\", \"versionStartIncluding\": \"4.7.0\"}, {\"criteria\": \"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"10.0.10240.20402\", \"versionStartIncluding\": \"10.0.0\"}, {\"criteria\": \"cpe:2.3:a:microsoft:.net:*:sp2:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"3.0.50727.8976\", \"versionStartIncluding\": \"2.0.0\"}, {\"criteria\": \"cpe:2.3:a:microsoft:.net:*:sp2:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"3.0.50727.8976\", \"versionStartIncluding\": \"3.0.0\"}, {\"criteria\": \"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"3.0.50727.8976\", \"versionStartIncluding\": \"3.5.0\"}, {\"criteria\": \"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"3.0.30729.8959\", \"versionStartIncluding\": \"3.5.0\"}], \"operator\": \"OR\"}]}], \"providerMetadata\": {\"orgId\": \"f38d906d-7342-40ea-92c1-6c4a2c6478c8\", \"shortName\": \"microsoft\", \"dateUpdated\": \"2025-05-03T00:47:14.222Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2024-29059\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-10-21T23:05:22.579Z\", \"dateReserved\": \"2024-03-14T23:05:27.954Z\", \"assignerOrgId\": \"f38d906d-7342-40ea-92c1-6c4a2c6478c8\", \"datePublished\": \"2024-03-22T23:09:05.745Z\", \"assignerShortName\": \"microsoft\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

CERTFR-2024-AVI-0248

Vulnerability from certfr_avis - Published: - Updated:

Une vulnérabilité a été corrigée dans Microsoft .Net. Elle permet à un attaquant de provoquer une atteinte à la confidentialité des données.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Microsoft	N/A	Microsoft .NET Framework 4.8
Microsoft	N/A	Microsoft .NET Framework 3.0 Service Pack 2
Microsoft	N/A	Microsoft .NET Framework 3.5
Microsoft	N/A	Microsoft .NET Framework 3.5 et 4.8.1
Microsoft	N/A	Microsoft .NET Framework 4.6.2
Microsoft	N/A	Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2
Microsoft	N/A	Microsoft .NET Framework 3.5 et 4.8
Microsoft	N/A	Microsoft .NET Framework 3.5 et 4.6/4.6.2
Microsoft	N/A	Microsoft .NET Framework 3.5 et 4.7.2
Microsoft	N/A	Microsoft .NET Framework 2.0 Service Pack 2
Microsoft	N/A	Microsoft .NET Framework 3.5 et 4.6.2/4.7/4.7.1/4.7.2
Microsoft	N/A	Microsoft .NET Framework 3.5.1

References

Title

Publication Time

CERTFR-2024-AVI-0248

Vulnerability from certfr_avis - Published: - Updated:

Une vulnérabilité a été corrigée dans Microsoft .Net. Elle permet à un attaquant de provoquer une atteinte à la confidentialité des données.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Microsoft	N/A	Microsoft .NET Framework 4.8
Microsoft	N/A	Microsoft .NET Framework 3.0 Service Pack 2
Microsoft	N/A	Microsoft .NET Framework 3.5
Microsoft	N/A	Microsoft .NET Framework 3.5 et 4.8.1
Microsoft	N/A	Microsoft .NET Framework 4.6.2
Microsoft	N/A	Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2
Microsoft	N/A	Microsoft .NET Framework 3.5 et 4.8
Microsoft	N/A	Microsoft .NET Framework 3.5 et 4.6/4.6.2
Microsoft	N/A	Microsoft .NET Framework 3.5 et 4.7.2
Microsoft	N/A	Microsoft .NET Framework 2.0 Service Pack 2
Microsoft	N/A	Microsoft .NET Framework 3.5 et 4.6.2/4.7/4.7.1/4.7.2
Microsoft	N/A	Microsoft .NET Framework 3.5.1

References

Title

Publication Time

BDU:2024-02326

Vulnerability from fstec - Published: 22.03.2024

Title

Уязвимость программной платформы Microsoft .NET Framework, связанная с недостаточной защитой служебных данных, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации

Description

Уязвимость программной платформы Microsoft .NET Framework связана с недостаточной защитой служебных данных при обработке объектов ObjRef. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, получить несанкционированный доступ к защищаемой информации

Severity


                    
                      AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Vendor

Microsoft Corp

Software Name

Microsoft .NET Framework 3.5, Microsoft .NET Framework 3.5.1, Microsoft .NET Framework 4.6, Microsoft .NET Framework 4.7, Microsoft .NET Framework 4.6.2, Microsoft .NET Framework 4.7.1, Microsoft .NET Framework 4.7.2, Microsoft .NET Framework 4.8, Microsoft .NET Framework 4.8.1, Microsoft .NET Framework 2.0 Service Pack 2, Microsoft .NET Framework 3.0 Service Pack 2

Software Version

- (Microsoft .NET Framework 3.5), - (Microsoft .NET Framework 3.5.1), - (Microsoft .NET Framework 4.6), - (Microsoft .NET Framework 4.7), - (Microsoft .NET Framework 4.6.2), - (Microsoft .NET Framework 4.7.1), - (Microsoft .NET Framework 4.7.2), - (Microsoft .NET Framework 4.8), - (Microsoft .NET Framework 4.8.1), - (Microsoft .NET Framework 2.0 Service Pack 2), - (Microsoft .NET Framework 3.0 Service Pack 2)

Possible Mitigations

Использование рекомендаций: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059

Reference

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059

CWE

CWE-200

JSON

To clipboard

{
  "CVSS 2.0": "AV:N/AC:L/Au:N/C:C/I:N/A:N",
  "CVSS 3.0": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Microsoft Corp",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "- (Microsoft .NET Framework 3.5), - (Microsoft .NET Framework 3.5.1), - (Microsoft .NET Framework 4.6), - (Microsoft .NET Framework 4.7), - (Microsoft .NET Framework 4.6.2), - (Microsoft .NET Framework 4.7.1), - (Microsoft .NET Framework 4.7.2), - (Microsoft .NET Framework 4.8), - (Microsoft .NET Framework 4.8.1), - (Microsoft .NET Framework 2.0 Service Pack 2), - (Microsoft .NET Framework 3.0 Service Pack 2)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\nhttps://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "22.03.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "03.06.2025",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "27.03.2024",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2024-02326",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2024-29059",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Microsoft .NET Framework 3.5, Microsoft .NET Framework 3.5.1, Microsoft .NET Framework 4.6, Microsoft .NET Framework 4.7, Microsoft .NET Framework 4.6.2, Microsoft .NET Framework 4.7.1, Microsoft .NET Framework 4.7.2, Microsoft .NET Framework 4.8, Microsoft .NET Framework 4.8.1, Microsoft .NET Framework 2.0 Service Pack 2, Microsoft .NET Framework 3.0 Service Pack 2",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "Microsoft Corp Windows Server 2008 Service Pack 2 - 32-bit, Microsoft Corp Windows Server 2008 Service Pack 2 - 64-bit, Microsoft Corp Windows Server 2012 - , Microsoft Corp Windows Server 2012 R2 - , Microsoft Corp Windows Server 2008 R2 Service Pack 1 - 64-bit, Microsoft Corp Windows 10 - 64-bit, Microsoft Corp Windows 10 - 32-bit, Microsoft Corp Windows 10 1607 - 64-bit, Microsoft Corp Windows 10 1607 - 32-bit, Microsoft Corp Windows Server 2016 - , Microsoft Corp Windows Server 2008 Service Pack 2 (Server Core Installation) - 64-bit, Microsoft Corp Windows Server 2008 Service Pack 2 (Server Core Installation) - 32-bit, Microsoft Corp Windows Server 2012 R2 (Server Core installation) - , Microsoft Corp Windows Server 2016 (Server Core installation) - , Microsoft Corp Windows Server 2008 R2 Service Pack 1 (Server Core installation) - 64-bit, Microsoft Corp Windows 10 1809 - 64-bit, Microsoft Corp Windows Server 2019 - , Microsoft Corp Windows Server 2019 (Server Core installation) - , Microsoft Corp Windows 10 1809 - ARM64, Microsoft Corp Windows Server 2022 - , Microsoft Corp Windows Server 2022 (Server Core installation) - , Microsoft Corp Windows 10 21H2 - 64-bit, Microsoft Corp Windows 10 21H2 - 32-bit, Microsoft Corp Windows 10 21H2 - ARM64, Microsoft Corp Windows 11 22H2 - 64-bit, Microsoft Corp Windows 11 22H2 - ARM64, Microsoft Corp Windows 10 22H2 - 64-bit, Microsoft Corp Windows 10 22H2 - ARM64, Microsoft Corp Windows 10 22H2 - 32-bit, Microsoft Corp Windows 11 21H2 - 64-bit, Microsoft Corp Windows 11 21H2 - ARM64, Microsoft Corp Windows Server 2012 (Server Core installation) - , Microsoft Corp Windows 11 23H2 - 64-bit, Microsoft Corp Windows 11 23H2 - ARM64, Microsoft Corp Windows Server 2022, 23H2 Edition (Server Core installation) - ",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b Microsoft .NET Framework, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u0437\u0430\u0449\u0438\u0442\u043e\u0439 \u0441\u043b\u0443\u0436\u0435\u0431\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u0420\u0430\u0441\u043a\u0440\u044b\u0442\u0438\u0435 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 (CWE-200)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b Microsoft .NET Framework \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u0437\u0430\u0449\u0438\u0442\u043e\u0439 \u0441\u043b\u0443\u0436\u0435\u0431\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 \u043f\u0440\u0438 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0435 \u043e\u0431\u044a\u0435\u043a\u0442\u043e\u0432 ObjRef. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e, \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0441\u0431\u043e\u0440 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041f\u0440\u0438\u043a\u043b\u0430\u0434\u043d\u043e\u0435 \u041f\u041e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-200",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,8)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.1 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,5)"
}

FKIE_CVE-2024-29059

Vulnerability from fkie_nvd - Published: 2024-03-23 00:15 - Updated: 2026-06-17 07:22

CISA KEV KEVintel KEV

Severity

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Summary

.NET Framework Information Disclosure Vulnerability

References

URL	Tags
secure@microsoft.com	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059	Vendor Advisory
134c704f-9b21-4f2e-91b3-4a467353bcc0	https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-29059	US Government Resource

Impacted products

Vendor	Product	Version
microsoft	.net_framework	3.5
microsoft	.net_framework	4.7.2
microsoft	windows_10_1607	-
microsoft	windows_10_1809	-
microsoft	windows_server_2016	-
microsoft	windows_server_2019	-
microsoft	.net_framework	3.5
microsoft	.net_framework	4.8
microsoft	windows_10_1607	-
microsoft	windows_10_1809	-
microsoft	windows_10_21h2	-
microsoft	windows_10_22h2	-
microsoft	windows_11_21h2	-
microsoft	windows_server_2019	-
microsoft	windows_server_2022	-
microsoft	.net_framework	3.5.1
microsoft	windows_server_2008	r2
microsoft	windows_server_2012	-
microsoft	windows_server_2012	r2
microsoft	.net_framework	2.0
microsoft	.net_framework	3.0
microsoft	windows_server_2008	-
microsoft	.net_framework	3.5
microsoft	.net_framework	4.6
microsoft	.net_framework	4.6.2
microsoft	windows_10_1507	-
microsoft	windows_10_1507	-
microsoft	.net_framework	4.6.2
microsoft	windows_server_2008	-
microsoft	.net_framework	3.5
microsoft	.net_framework	4.8.1
microsoft	windows_10_21h2	-
microsoft	windows_10_22h2	-
microsoft	windows_11_21h2	-
microsoft	windows_11_22h2	-
microsoft	windows_11_23h2	-
microsoft	windows_server_2022	-
microsoft	windows_server_2022_23h2	-
microsoft	.net_framework	4.6.2
microsoft	.net_framework	4.7
microsoft	.net_framework	4.7.1
microsoft	.net_framework	4.7.2
microsoft	windows_server_2008	r2
microsoft	windows_server_2012	-
microsoft	windows_server_2012	r2
microsoft	.net_framework	4.8
microsoft	windows_10_1607	-
microsoft	windows_server_2008	r2
microsoft	windows_server_2012	-
microsoft	windows_server_2012	r2
microsoft	windows_server_2016	-

JSON

To clipboard

{
  "affected": [
    {
      "affectedData": [
        {
          "platforms": [
            "Windows 10 Version 1607 for 32-bit Systems",
            "Windows 10 Version 1607 for x64-based Systems",
            "Windows Server 2016",
            "Windows Server 2016 (Server Core installation)",
            "Windows Server 2008 R2 for x64-based Systems Service Pack 1",
            "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)",
            "Windows Server 2012",
            "Windows Server 2012 (Server Core installation)",
            "Windows Server 2012 R2",
            "Windows Server 2012 R2 (Server Core installation)"
          ],
          "product": "Microsoft .NET Framework 4.8",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "4.8.04690.02",
              "status": "affected",
              "version": "4.8.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows 10 Version 1809 for 32-bit Systems",
            "Windows 10 Version 1809 for x64-based Systems",
            "Windows Server 2019",
            "Windows Server 2019 (Server Core installation)",
            "Windows Server 2022",
            "Windows Server 2022 (Server Core installation)",
            "Windows 11 version 21H2 for x64-based Systems",
            "Windows 11 version 21H2 for ARM64-based Systems",
            "Windows 10 Version 21H2 for 32-bit Systems",
            "Windows 10 Version 21H2 for ARM64-based Systems",
            "Windows 10 Version 21H2 for x64-based Systems",
            "Windows 10 Version 22H2 for x64-based Systems",
            "Windows 10 Version 22H2 for ARM64-based Systems",
            "Windows 10 Version 22H2 for 32-bit Systems"
          ],
          "product": "Microsoft .NET Framework 3.5 AND 4.8",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "4.8.04690.02",
              "status": "affected",
              "version": "4.8.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows 10 Version 1809 for x64-based Systems",
            "Windows Server 2019",
            "Windows Server 2019 (Server Core installation)",
            "Windows 10 Version 1607 for 32-bit Systems",
            "Windows 10 Version 1607 for x64-based Systems",
            "Windows Server 2016",
            "Windows Server 2016 (Server Core installation)"
          ],
          "product": "Microsoft .NET Framework 3.5 AND 4.7.2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "4.7.04081.03",
              "status": "affected",
              "version": "4.7.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows Server 2008 R2 for x64-based Systems Service Pack 1",
            "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)",
            "Windows Server 2012",
            "Windows Server 2012 (Server Core installation)",
            "Windows Server 2012 R2",
            "Windows Server 2012 R2 (Server Core installation)"
          ],
          "product": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "4.7.04081.03",
              "status": "affected",
              "version": "4.7.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows Server 2022",
            "Windows Server 2022 (Server Core installation)",
            "Windows 11 version 21H2 for x64-based Systems",
            "Windows 11 version 21H2 for ARM64-based Systems",
            "Windows 10 Version 21H2 for 32-bit Systems",
            "Windows 10 Version 21H2 for ARM64-based Systems",
            "Windows 10 Version 21H2 for x64-based Systems",
            "Windows 11 Version 22H2 for ARM64-based Systems",
            "Windows 11 Version 22H2 for x64-based Systems",
            "Windows 10 Version 22H2 for x64-based Systems",
            "Windows 10 Version 22H2 for ARM64-based Systems",
            "Windows 10 Version 22H2 for 32-bit Systems",
            "Windows 11 Version 23H2 for ARM64-based Systems",
            "Windows 11 Version 23H2 for x64-based Systems",
            "Windows Server 2022, 23H2 Edition (Server Core installation)"
          ],
          "product": "Microsoft .NET Framework 3.5 AND 4.8.1",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "4.8.09214.01",
              "status": "affected",
              "version": "4.8.1",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows Server 2008 for 32-bit Systems Service Pack 2",
            "Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)",
            "Windows Server 2008 for x64-based Systems Service Pack 2",
            "Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)"
          ],
          "product": "Microsoft .NET Framework 4.6.2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "4.7.04081.03",
              "status": "affected",
              "version": "4.7.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows 10 for 32-bit Systems",
            "Windows 10 for x64-based Systems"
          ],
          "product": "Microsoft .NET Framework 3.5 AND 4.6/4.6.2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "10.0.10240.20402",
              "status": "affected",
              "version": "10.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows Server 2008 for 32-bit Systems Service Pack 2",
            "Windows Server 2008 for x64-based Systems Service Pack 2"
          ],
          "product": "Microsoft .NET Framework 2.0 Service Pack 2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "3.0.50727.8976",
              "status": "affected",
              "version": "2.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows Server 2008 for 32-bit Systems Service Pack 2",
            "Windows Server 2008 for x64-based Systems Service Pack 2"
          ],
          "product": "Microsoft .NET Framework 3.0 Service Pack 2",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "3.0.50727.8976",
              "status": "affected",
              "version": "3.0.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows Server 2012",
            "Windows Server 2012 (Server Core installation)",
            "Windows Server 2012 R2",
            "Windows Server 2012 R2 (Server Core installation)"
          ],
          "product": "Microsoft .NET Framework 3.5",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "3.0.50727.8976",
              "status": "affected",
              "version": "3.5.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "platforms": [
            "Windows Server 2008 R2 for x64-based Systems Service Pack 1",
            "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)"
          ],
          "product": "Microsoft .NET Framework 3.5.1",
          "vendor": "Microsoft",
          "versions": [
            {
              "lessThan": "3.0.30729.8959",
              "status": "affected",
              "version": "3.5.0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "source": "secure@microsoft.com"
    }
  ],
  "cisaActionDue": "2025-02-25",
  "cisaExploitAdd": "2025-02-04",
  "cisaRequiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.",
  "cisaVulnerabilityName": "Microsoft .NET Framework Information Disclosure Vulnerability",
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*",
              "matchCriteriaId": "23317443-1968-4791-9F20-AD3B308A83D1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "3EF7A75E-EE27-4AA7-8D84-9D696728A4CE",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "61019899-D7AF-46E4-A72C-D189180F66AB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*",
              "matchCriteriaId": "306B7CE6-8239-4AED-9ED4-4C9F5B349F58",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DB79EE26-FC32-417D-A49C-A1A63165A968",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*",
              "matchCriteriaId": "23317443-1968-4791-9F20-AD3B308A83D1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "2D3F18AF-84ED-473B-A8DF-65EB23C475AF",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "61019899-D7AF-46E4-A72C-D189180F66AB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2E332666-2E03-468E-BC30-299816D6E8ED",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2F513002-D8C1-4D3A-9F79-4B52498F67E9",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "4D8DC08D-A860-493A-8AA6-1AD4A0A511AD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BB4AE761-6FAC-4000-A63D-42CE3FAB8412",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DB79EE26-FC32-417D-A49C-A1A63165A968",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "821614DD-37DD-44E2-A8A4-FE8D23A33C3C",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:3.5.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "8EDC4407-7E92-4E60-82F0-0C87D1860D3A",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*",
              "matchCriteriaId": "AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A7DF96F8-BA6A-4780-9CA3-F719B3F81074",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*",
              "matchCriteriaId": "DB18C4CE-5917-401E-ACF7-2747084FD36E",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:*",
              "matchCriteriaId": "42A6DF09-B8E1-414D-97E7-453566055279",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:3.0:sp2:*:*:*:*:*:*",
              "matchCriteriaId": "D400E856-2B2E-4CEA-8CA5-309FDF371CEA",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*",
              "matchCriteriaId": "5F422A8C-2C4E-42C8-B420-E0728037E15C",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*",
              "matchCriteriaId": "23317443-1968-4791-9F20-AD3B308A83D1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:4.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "280FE663-23BE-45D2-9B31-5F577E390B48",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x64:*",
              "matchCriteriaId": "A045AC0A-471E-444C-B3B0-4CABC23E8CFB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x86:*",
              "matchCriteriaId": "28A7FEE9-B473-48A0-B0ED-A5CC1E44194C",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*",
              "matchCriteriaId": "5F422A8C-2C4E-42C8-B420-E0728037E15C",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*",
              "matchCriteriaId": "23317443-1968-4791-9F20-AD3B308A83D1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:4.8.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "934D4E46-12C1-41DC-A28C-A2C430E965E4",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2F513002-D8C1-4D3A-9F79-4B52498F67E9",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "4D8DC08D-A860-493A-8AA6-1AD4A0A511AD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BB4AE761-6FAC-4000-A63D-42CE3FAB8412",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "D4793BFB-2E4E-4067-87A5-4B8749025CA3",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_11_23h2:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "42D329B2-432D-4029-87EB-4C3C5F55CD95",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "821614DD-37DD-44E2-A8A4-FE8D23A33C3C",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2022_23h2:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "75CCACE6-A0EE-4A6F-BD5A-7AA504B02717",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "A16AD2B0-2189-4E8E-B7FC-CE598CA1CB2D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "734112B3-1383-4BE3-8721-C0F84566B764",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "36B0E40A-84EF-4099-A395-75D6B8CDA196",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "3EF7A75E-EE27-4AA7-8D84-9D696728A4CE",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*",
              "matchCriteriaId": "AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A7DF96F8-BA6A-4780-9CA3-F719B3F81074",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*",
              "matchCriteriaId": "DB18C4CE-5917-401E-ACF7-2747084FD36E",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "2D3F18AF-84ED-473B-A8DF-65EB23C475AF",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "61019899-D7AF-46E4-A72C-D189180F66AB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*",
              "matchCriteriaId": "AF07A81D-12E5-4B1D-BFF9-C8D08C32FF4F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A7DF96F8-BA6A-4780-9CA3-F719B3F81074",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*",
              "matchCriteriaId": "DB18C4CE-5917-401E-ACF7-2747084FD36E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": ".NET Framework Information Disclosure Vulnerability"
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad de divulgaci\u00f3n de informaci\u00f3n de .NET Framework"
    }
  ],
  "id": "CVE-2024-29059",
  "lastModified": "2026-06-17T07:22:20.537",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 7.5,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 3.6,
        "source": "secure@microsoft.com",
        "type": "Secondary"
      }
    ],
    "ssvcV203": [
      {
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "ssvcData": {
          "id": "CVE-2024-29059",
          "options": [
            {
              "exploitation": "active"
            },
            {
              "automatable": "yes"
            },
            {
              "technicalImpact": "partial"
            }
          ],
          "role": "CISA Coordinator",
          "timestamp": "2025-02-04T15:47:39.403090Z",
          "version": "2.0.3"
        }
      }
    ]
  },
  "published": "2024-03-23T00:15:09.150",
  "references": [
    {
      "source": "secure@microsoft.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059"
    },
    {
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "tags": [
        "US Government Resource"
      ],
      "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-29059"
    }
  ],
  "sourceIdentifier": "secure@microsoft.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-209"
        }
      ],
      "source": "secure@microsoft.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-209"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-PG2Q-WFGH-R323

Vulnerability from github – Published: 2024-03-23 00:30 – Updated: 2025-10-22 00:33

Details

.NET Framework Information Disclosure Vulnerability

Severity

7.5 (High)


                  
                    CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2024-29059"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-209"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2024-03-23T00:15:09Z",
    "severity": "HIGH"
  },
  "details": ".NET Framework Information Disclosure Vulnerability",
  "id": "GHSA-pg2q-wfgh-r323",
  "modified": "2025-10-22T00:33:00Z",
  "published": "2024-03-23T00:30:29Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29059"
    },
    {
      "type": "WEB",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059"
    },
    {
      "type": "WEB",
      "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-29059"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
      "type": "CVSS_V3"
    }
  ]
}

GSD-2024-29059

Vulnerability from gsd - Updated: 2024-04-02 05:02

Details

.NET Framework Information Disclosure Vulnerability

Aliases

CVE-2024-29059

JSON

To clipboard

{
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2024-29059"
      ],
      "details": ".NET Framework Information Disclosure Vulnerability",
      "id": "GSD-2024-29059",
      "modified": "2024-04-02T05:02:57.399085Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "secure@microsoft.com",
        "ID": "CVE-2024-29059",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Microsoft .NET Framework 4.8",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "4.8.0",
                          "version_value": "4.8.4682.0"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Microsoft .NET Framework 3.5 AND 4.8",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "4.8.0",
                          "version_value": "4.8.4682.0"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Microsoft .NET Framework 3.5 AND 4.7.2",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "4.7.0",
                          "version_value": "4.7.4076.0"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "3.0.0.0",
                          "version_value": "10.0.14393.6614"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "4.7.0",
                          "version_value": "4.7.4076.0"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Microsoft .NET Framework 3.5 AND 4.8.1",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "4.8.1",
                          "version_value": "4.8.9206.0"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Microsoft .NET Framework 4.6.2",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "4.7.0",
                          "version_value": "4.7.4076.0"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Microsoft .NET Framework 3.5 AND 4.6/4.6.2",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "10.0.0",
                          "version_value": "10.0.10240.20402"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Microsoft .NET Framework 2.0 Service Pack 2",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "2.0.0",
                          "version_value": "3.0.50727.8975"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Microsoft .NET Framework 3.0 Service Pack 2",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "3.0.0",
                          "version_value": "3.0.50727.8975"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Microsoft .NET Framework 3.5",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "3.5.0",
                          "version_value": "3.0.50727.8975"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Microsoft .NET Framework 3.5.1",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "3.5.0",
                          "version_value": "3.0.50727.8975"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Microsoft"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": ".NET Framework Information Disclosure Vulnerability"
          }
        ]
      },
      "impact": {
        "cvss": [
          {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
            "version": "3.1"
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "cweId": "CWE-209",
                "lang": "eng",
                "value": "CWE-209: Generation of Error Message Containing Sensitive Information"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059",
            "refsource": "MISC",
            "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "cve": {
        "descriptions": [
          {
            "lang": "en",
            "value": ".NET Framework Information Disclosure Vulnerability"
          },
          {
            "lang": "es",
            "value": "Vulnerabilidad de divulgaci\u00f3n de informaci\u00f3n de .NET Framework"
          }
        ],
        "id": "CVE-2024-29059",
        "lastModified": "2024-04-04T22:15:09.033",
        "metrics": {
          "cvssMetricV31": [
            {
              "cvssData": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.1"
              },
              "exploitabilityScore": 3.9,
              "impactScore": 3.6,
              "source": "secure@microsoft.com",
              "type": "Primary"
            }
          ]
        },
        "published": "2024-03-23T00:15:09.150",
        "references": [
          {
            "source": "secure@microsoft.com",
            "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059"
          }
        ],
        "sourceIdentifier": "secure@microsoft.com",
        "vulnStatus": "Awaiting Analysis",
        "weaknesses": [
          {
            "description": [
              {
                "lang": "en",
                "value": "CWE-209"
              }
            ],
            "source": "secure@microsoft.com",
            "type": "Secondary"
          }
        ]
      }
    }
  }
}

MSRC_CVE-2024-29059

Vulnerability from csaf_microsoft - Published: 2024-03-12 07:00 - Updated: 2024-05-08 07:00

Summary

.NET Framework Information Disclosure Vulnerability

Severity

Important

Notes

Additional Resources: To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle

Disclaimer: The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.

Customer Action: Required. The vulnerability documented by this CVE requires customer action to resolve.

CVE-2024-29059

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

CWE-209 - Generation of Error Message Containing Sensitive Information

Affected products

Fixed 68 products

Product	Identifier	Version	Remediation
Microsoft .NET Framework 4.8 4.8.04690.02 Microsoft .NET Framework 4.8		4.8.04690.02
Microsoft .NET Framework 4.8 4.8.04690.02 Microsoft .NET Framework 4.8		4.8.04690.02
Microsoft .NET Framework 4.8 4.8.04690.02 Microsoft .NET Framework 4.8		4.8.04690.02
Microsoft .NET Framework 4.8 4.8.04690.02 Microsoft .NET Framework 4.8		4.8.04690.02
Microsoft .NET Framework 4.8 4.8.04690.02 Microsoft .NET Framework 4.8		4.8.04690.02
Microsoft .NET Framework 4.8 4.8.04690.02 Microsoft .NET Framework 4.8		4.8.04690.02
Microsoft .NET Framework 4.8 4.8.04690.02 Microsoft .NET Framework 4.8		4.8.04690.02
Microsoft .NET Framework 4.8 4.8.04690.02 Microsoft .NET Framework 4.8		4.8.04690.02
Microsoft .NET Framework 4.8 4.8.04690.02 Microsoft .NET Framework 4.8		4.8.04690.02
Microsoft .NET Framework 4.8 4.8.04690.02 Microsoft .NET Framework 4.8		4.8.04690.02
Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.7.2 4.7.04081.03 Microsoft .NET Framework 3.5 AND 4.7.2		4.7.04081.03
Microsoft .NET Framework 3.5 AND 4.7.2 4.7.04081.03 Microsoft .NET Framework 3.5 AND 4.7.2		4.7.04081.03
Microsoft .NET Framework 3.5 AND 4.7.2 4.7.04081.03 Microsoft .NET Framework 3.5 AND 4.7.2		4.7.04081.03
Microsoft .NET Framework 3.5 AND 4.7.2 4.7.04081.03 Microsoft .NET Framework 3.5 AND 4.7.2		4.7.04081.03
Microsoft .NET Framework 3.5 AND 4.7.2 4.7.04081.03 Microsoft .NET Framework 3.5 AND 4.7.2		4.7.04081.03
Microsoft .NET Framework 3.5 AND 4.7.2 4.7.04081.03 Microsoft .NET Framework 3.5 AND 4.7.2		4.7.04081.03
Microsoft .NET Framework 3.5 AND 4.7.2 4.7.04081.03 Microsoft .NET Framework 3.5 AND 4.7.2		4.7.04081.03
Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 4.8.04690.01 Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2		4.8.04690.01
Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 4.8.04690.01 Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2		4.8.04690.01
Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 4.8.04690.01 Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2		4.8.04690.01
Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 4.8.04690.01 Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2		4.8.04690.01
Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 4.8.04690.01 Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2		4.8.04690.01
Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 4.8.04690.01 Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2		4.8.04690.01
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.09214.01
Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1		4.8.09214.01
Microsoft .NET Framework 4.6.2 4.7.04081.03 Microsoft .NET Framework 4.6.2		4.7.04081.03
Microsoft .NET Framework 4.6.2 4.7.04081.03 Microsoft .NET Framework 4.6.2		4.7.04081.03
Microsoft .NET Framework 4.6.2 4.7.04081.03 Microsoft .NET Framework 4.6.2		4.7.04081.03
Microsoft .NET Framework 4.6.2 4.7.04081.03 Microsoft .NET Framework 4.6.2		4.7.04081.03
Microsoft .NET Framework 3.5 AND 4.6/4.6.2 10.0.10240.20402 Microsoft .NET Framework 3.5 AND 4.6/4.6.2		10.0.10240.20402
Microsoft .NET Framework 3.5 AND 4.6/4.6.2 10.0.10240.20402 Microsoft .NET Framework 3.5 AND 4.6/4.6.2		10.0.10240.20402
Microsoft .NET Framework 3.5 3.0.50727.8976 Microsoft .NET Framework 3.5		3.0.50727.8976
Microsoft .NET Framework 3.5 3.0.50727.8976 Microsoft .NET Framework 3.5		3.0.50727.8976
Microsoft .NET Framework 3.5 3.0.50727.8976 Microsoft .NET Framework 3.5		3.0.50727.8976
Microsoft .NET Framework 3.5 3.0.50727.8976 Microsoft .NET Framework 3.5		3.0.50727.8976
Microsoft .NET Framework 3.0 Service Pack 2 3.0.50727.8976 Microsoft .NET Framework 3.0 Service Pack 2		3.0.50727.8976
Microsoft .NET Framework 3.0 Service Pack 2 3.0.50727.8976 Microsoft .NET Framework 3.0 Service Pack 2		3.0.50727.8976
Microsoft .NET Framework 2.0 Service Pack 2 3.0.50727.8976 Microsoft .NET Framework 2.0 Service Pack 2		3.0.50727.8976
Microsoft .NET Framework 2.0 Service Pack 2 3.0.50727.8976 Microsoft .NET Framework 2.0 Service Pack 2		3.0.50727.8976
Microsoft .NET Framework 3.5.1 3.0.30729.8959 Microsoft .NET Framework 3.5.1		3.0.30729.8959
Microsoft .NET Framework 3.5.1 3.0.30729.8959 Microsoft .NET Framework 3.5.1		3.0.30729.8959

Known affected 68 products

Product	Version	Remediation
Microsoft .NET Framework 3.5 AND 4.6/4.6.2 <10.0.10240.20402 Microsoft .NET Framework 3.5 AND 4.6/4.6.2	<10.0.10240.20402	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.6/4.6.2 <10.0.10240.20402 Microsoft .NET Framework 3.5 AND 4.6/4.6.2	<10.0.10240.20402	Vendor Fix fix
Microsoft .NET Framework 4.6.2 <4.7.04081.03 Microsoft .NET Framework 4.6.2	<4.7.04081.03	Vendor Fix fix Vendor Fix fix
Microsoft .NET Framework 4.6.2 <4.7.04081.03 Microsoft .NET Framework 4.6.2	<4.7.04081.03	Vendor Fix fix Vendor Fix fix
Microsoft .NET Framework 4.6.2 <4.7.04081.03 Microsoft .NET Framework 4.6.2	<4.7.04081.03	Vendor Fix fix Vendor Fix fix
Microsoft .NET Framework 4.6.2 <4.7.04081.03 Microsoft .NET Framework 4.6.2	<4.7.04081.03	Vendor Fix fix Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8.1 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8.1	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 <4.8.04690.01 Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2	<4.8.04690.01	Vendor Fix fix Vendor Fix fix
Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 <4.8.04690.01 Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2	<4.8.04690.01	Vendor Fix fix Vendor Fix fix
Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 <4.8.04690.01 Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2	<4.8.04690.01	Vendor Fix fix
Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 <4.8.04690.01 Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2	<4.8.04690.01	Vendor Fix fix
Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 <4.8.04690.01 Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2	<4.8.04690.01	Vendor Fix fix
Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 <4.8.04690.01 Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2	<4.8.04690.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.7.2 <4.7.04081.03 Microsoft .NET Framework 3.5 AND 4.7.2	<4.7.04081.03	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.7.2 <4.7.04081.03 Microsoft .NET Framework 3.5 AND 4.7.2	<4.7.04081.03	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.7.2 <4.7.04081.03 Microsoft .NET Framework 3.5 AND 4.7.2	<4.7.04081.03	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.7.2 <4.7.04081.03 Microsoft .NET Framework 3.5 AND 4.7.2	<4.7.04081.03	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.7.2 <4.7.04081.03 Microsoft .NET Framework 3.5 AND 4.7.2	<4.7.04081.03	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.7.2 <4.7.04081.03 Microsoft .NET Framework 3.5 AND 4.7.2	<4.7.04081.03	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.7.2 <4.7.04081.03 Microsoft .NET Framework 3.5 AND 4.7.2	<4.7.04081.03	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 3.5 AND 4.8 <4.8.09214.01 Microsoft .NET Framework 3.5 AND 4.8	<4.8.09214.01	Vendor Fix fix
Microsoft .NET Framework 4.8 <4.8.04690.02 Microsoft .NET Framework 4.8	<4.8.04690.02	Vendor Fix fix
Microsoft .NET Framework 4.8 <4.8.04690.02 Microsoft .NET Framework 4.8	<4.8.04690.02	Vendor Fix fix
Microsoft .NET Framework 4.8 <4.8.04690.02 Microsoft .NET Framework 4.8	<4.8.04690.02	Vendor Fix fix
Microsoft .NET Framework 4.8 <4.8.04690.02 Microsoft .NET Framework 4.8	<4.8.04690.02	Vendor Fix fix
Microsoft .NET Framework 4.8 <4.8.04690.02 Microsoft .NET Framework 4.8	<4.8.04690.02	Vendor Fix fix Vendor Fix fix
Microsoft .NET Framework 4.8 <4.8.04690.02 Microsoft .NET Framework 4.8	<4.8.04690.02	Vendor Fix fix Vendor Fix fix
Microsoft .NET Framework 4.8 <4.8.04690.02 Microsoft .NET Framework 4.8	<4.8.04690.02	Vendor Fix fix
Microsoft .NET Framework 4.8 <4.8.04690.02 Microsoft .NET Framework 4.8	<4.8.04690.02	Vendor Fix fix
Microsoft .NET Framework 4.8 <4.8.04690.02 Microsoft .NET Framework 4.8	<4.8.04690.02	Vendor Fix fix
Microsoft .NET Framework 4.8 <4.8.04690.02 Microsoft .NET Framework 4.8	<4.8.04690.02	Vendor Fix fix
Microsoft .NET Framework 3.5.1 <3.0.30729.8959 Microsoft .NET Framework 3.5.1	<3.0.30729.8959	Vendor Fix fix Vendor Fix fix
Microsoft .NET Framework 3.5.1 <3.0.30729.8959 Microsoft .NET Framework 3.5.1	<3.0.30729.8959	Vendor Fix fix Vendor Fix fix
Microsoft .NET Framework 2.0 Service Pack 2 <3.0.50727.8976 Microsoft .NET Framework 2.0 Service Pack 2	<3.0.50727.8976	Vendor Fix fix Vendor Fix fix
Microsoft .NET Framework 2.0 Service Pack 2 <3.0.50727.8976 Microsoft .NET Framework 2.0 Service Pack 2	<3.0.50727.8976	Vendor Fix fix Vendor Fix fix
Microsoft .NET Framework 3.0 Service Pack 2 <3.0.50727.8976 Microsoft .NET Framework 3.0 Service Pack 2	<3.0.50727.8976	Vendor Fix fix Vendor Fix fix
Microsoft .NET Framework 3.0 Service Pack 2 <3.0.50727.8976 Microsoft .NET Framework 3.0 Service Pack 2	<3.0.50727.8976	Vendor Fix fix Vendor Fix fix
Microsoft .NET Framework 3.5 <3.0.50727.8976 Microsoft .NET Framework 3.5	<3.0.50727.8976	Vendor Fix fix
Microsoft .NET Framework 3.5 <3.0.50727.8976 Microsoft .NET Framework 3.5	<3.0.50727.8976	Vendor Fix fix
Microsoft .NET Framework 3.5 <3.0.50727.8976 Microsoft .NET Framework 3.5	<3.0.50727.8976	Vendor Fix fix
Microsoft .NET Framework 3.5 <3.0.50727.8976 Microsoft .NET Framework 3.5	<3.0.50727.8976	Vendor Fix fix

Threats

Impact Information Disclosure

Exploit Status Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation More Likely

References

7 references

URL	Category
https://msrc.microsoft.com/update-guide/vulnerabi…	self
https://msrc.microsoft.com/csaf/advisories/2024/m…	self
https://www.microsoft.com/en-us/msrc/exploitabili…	external
https://support.microsoft.com/lifecycle	external
https://www.first.org/cvss	external
https://msrc.microsoft.com/update-guide/vulnerabi…	self
https://msrc.microsoft.com/csaf/advisories/2024/m…	self

Acknowledgments

<a href="https://twitter.com/mwulftange">Markus Wulftange</a> with <a href="https://code-white.com/">CODE WHITE GmbH</a>

JSON

To clipboard

{
  "document": {
    "acknowledgments": [
      {
        "names": [
          "\u003ca href=\"https://twitter.com/mwulftange\"\u003eMarkus Wulftange\u003c/a\u003e with \u003ca href=\"https://code-white.com/\"\u003eCODE WHITE GmbH\u003c/a\u003e"
        ]
      },
      {
        "names": [
          "\u003ca href=\"https://twitter.com/mwulftange\"\u003eMarkus Wulftange\u003c/a\u003e with \u003ca href=\"https://code-white.com/\"\u003eCODE WHITE GmbH\u003c/a\u003e"
        ]
      }
    ],
    "aggregate_severity": {
      "namespace": "https://www.microsoft.com/en-us/msrc/security-update-severity-rating-system",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Public",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en-US",
    "notes": [
      {
        "category": "general",
        "text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
        "title": "Additional Resources"
      },
      {
        "category": "legal_disclaimer",
        "text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
        "title": "Disclaimer"
      },
      {
        "category": "general",
        "text": "Required. The vulnerability documented by this CVE requires customer action to resolve.",
        "title": "Customer Action"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "secure@microsoft.com",
      "name": "Microsoft Security Response Center",
      "namespace": "https://msrc.microsoft.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "CVE-2024-29059 .NET Framework Information Disclosure Vulnerability - HTML",
        "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059"
      },
      {
        "category": "self",
        "summary": "CVE-2024-29059 .NET Framework Information Disclosure Vulnerability - CSAF",
        "url": "https://msrc.microsoft.com/csaf/advisories/2024/msrc_cve-2024-29059.json"
      },
      {
        "category": "external",
        "summary": "Microsoft Exploitability Index",
        "url": "https://www.microsoft.com/en-us/msrc/exploitability-index?rtc=1"
      },
      {
        "category": "external",
        "summary": "Microsoft Support Lifecycle",
        "url": "https://support.microsoft.com/lifecycle"
      },
      {
        "category": "external",
        "summary": "Common Vulnerability Scoring System",
        "url": "https://www.first.org/cvss"
      }
    ],
    "title": ".NET Framework Information Disclosure Vulnerability",
    "tracking": {
      "current_release_date": "2024-05-08T07:00:00.000Z",
      "generator": {
        "date": "2025-05-03T00:46:37.570Z",
        "engine": {
          "name": "MSRC Generator",
          "version": "1.0"
        }
      },
      "id": "msrc_CVE-2024-29059",
      "initial_release_date": "2024-03-12T07:00:00.000Z",
      "revision_history": [
        {
          "date": "2024-03-22T07:00:00.000Z",
          "legacy_version": "1",
          "number": "1",
          "summary": "Information published. This CVE was addressed by updates that were released in January 2024, but the CVE was inadvertently omitted from the January 2024 Security Updates. This is an informational change only. Customers who have already installed the January 2024 updates do not need to take any further action."
        },
        {
          "date": "2024-05-08T07:00:00.000Z",
          "legacy_version": "2",
          "number": "2",
          "summary": "The following corrections have been made in the Security Updates table: 1) Removed .NET Framework 3.5 and 4.7.2 on Windows 10 version 1809 for ARM-based systems, .NET Framework 3.5 and 4.7/4.7.1/4.7.2 on Windows 10 version 1607 as these versions are not affected by this vulnerability. 2) Added .NET Framework 3.5 \u0026 4.8 on Windows 10 version 1809 and Windows Server 2019, .NET Framework 3.5 and 4.7.2 on Windows 10 version 1607. Customers whose systems are configured to receive automatic updates do not need to take any further action. 3) Corrected Download and Article links."
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.04690.02",
            "product": {
              "name": "Microsoft .NET Framework 4.8 \u003c4.8.04690.02",
              "product_id": "49"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.04690.02",
            "product": {
              "name": "Microsoft .NET Framework 4.8 4.8.04690.02",
              "product_id": "11650-10852"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.04690.02",
            "product": {
              "name": "Microsoft .NET Framework 4.8 \u003c4.8.04690.02",
              "product_id": "50"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.04690.02",
            "product": {
              "name": "Microsoft .NET Framework 4.8 4.8.04690.02",
              "product_id": "11650-10853"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.04690.02",
            "product": {
              "name": "Microsoft .NET Framework 4.8 \u003c4.8.04690.02",
              "product_id": "51"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.04690.02",
            "product": {
              "name": "Microsoft .NET Framework 4.8 4.8.04690.02",
              "product_id": "11650-10816"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.04690.02",
            "product": {
              "name": "Microsoft .NET Framework 4.8 \u003c4.8.04690.02",
              "product_id": "52"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.04690.02",
            "product": {
              "name": "Microsoft .NET Framework 4.8 4.8.04690.02",
              "product_id": "11650-10855"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.04690.02",
            "product": {
              "name": "Microsoft .NET Framework 4.8 \u003c4.8.04690.02",
              "product_id": "53"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.04690.02",
            "product": {
              "name": "Microsoft .NET Framework 4.8 4.8.04690.02",
              "product_id": "11650-10051"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.04690.02",
            "product": {
              "name": "Microsoft .NET Framework 4.8 \u003c4.8.04690.02",
              "product_id": "54"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.04690.02",
            "product": {
              "name": "Microsoft .NET Framework 4.8 4.8.04690.02",
              "product_id": "11650-10049"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.04690.02",
            "product": {
              "name": "Microsoft .NET Framework 4.8 \u003c4.8.04690.02",
              "product_id": "55"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.04690.02",
            "product": {
              "name": "Microsoft .NET Framework 4.8 4.8.04690.02",
              "product_id": "11650-10378"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.04690.02",
            "product": {
              "name": "Microsoft .NET Framework 4.8 \u003c4.8.04690.02",
              "product_id": "56"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.04690.02",
            "product": {
              "name": "Microsoft .NET Framework 4.8 4.8.04690.02",
              "product_id": "11650-10379"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.04690.02",
            "product": {
              "name": "Microsoft .NET Framework 4.8 \u003c4.8.04690.02",
              "product_id": "57"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.04690.02",
            "product": {
              "name": "Microsoft .NET Framework 4.8 4.8.04690.02",
              "product_id": "11650-10483"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.04690.02",
            "product": {
              "name": "Microsoft .NET Framework 4.8 \u003c4.8.04690.02",
              "product_id": "58"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.04690.02",
            "product": {
              "name": "Microsoft .NET Framework 4.8 4.8.04690.02",
              "product_id": "11650-10543"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.09214.01",
              "product_id": "35"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01",
              "product_id": "11676-11568"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.09214.01",
              "product_id": "36"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01",
              "product_id": "11676-11569"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.09214.01",
              "product_id": "37"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01",
              "product_id": "11676-11571"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.09214.01",
              "product_id": "38"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01",
              "product_id": "11676-11572"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.09214.01",
              "product_id": "39"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01",
              "product_id": "11676-11923"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.09214.01",
              "product_id": "40"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01",
              "product_id": "11676-11924"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.09214.01",
              "product_id": "41"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01",
              "product_id": "11676-11926"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.09214.01",
              "product_id": "42"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01",
              "product_id": "11676-11927"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.09214.01",
              "product_id": "43"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01",
              "product_id": "11676-11929"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.09214.01",
              "product_id": "44"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01",
              "product_id": "11676-11930"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.09214.01",
              "product_id": "45"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01",
              "product_id": "11676-11931"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.09214.01",
              "product_id": "46"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01",
              "product_id": "11676-12097"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.09214.01",
              "product_id": "47"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01",
              "product_id": "11676-12098"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 \u003c4.8.09214.01",
              "product_id": "48"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8 4.8.09214.01",
              "product_id": "11676-12099"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.7.04081.03",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.7.2 \u003c4.7.04081.03",
              "product_id": "28"
            }
          },
          {
            "category": "product_version",
            "name": "4.7.04081.03",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.7.2 4.7.04081.03",
              "product_id": "11677-11569"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.7.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.7.04081.03",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.7.2 \u003c4.7.04081.03",
              "product_id": "29"
            }
          },
          {
            "category": "product_version",
            "name": "4.7.04081.03",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.7.2 4.7.04081.03",
              "product_id": "11677-11571"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.7.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.7.04081.03",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.7.2 \u003c4.7.04081.03",
              "product_id": "30"
            }
          },
          {
            "category": "product_version",
            "name": "4.7.04081.03",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.7.2 4.7.04081.03",
              "product_id": "11677-11572"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.7.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.7.04081.03",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.7.2 \u003c4.7.04081.03",
              "product_id": "31"
            }
          },
          {
            "category": "product_version",
            "name": "4.7.04081.03",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.7.2 4.7.04081.03",
              "product_id": "11677-10852"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.7.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.7.04081.03",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.7.2 \u003c4.7.04081.03",
              "product_id": "32"
            }
          },
          {
            "category": "product_version",
            "name": "4.7.04081.03",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.7.2 4.7.04081.03",
              "product_id": "11677-10853"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.7.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.7.04081.03",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.7.2 \u003c4.7.04081.03",
              "product_id": "33"
            }
          },
          {
            "category": "product_version",
            "name": "4.7.04081.03",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.7.2 4.7.04081.03",
              "product_id": "11677-10816"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.7.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.7.04081.03",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.7.2 \u003c4.7.04081.03",
              "product_id": "34"
            }
          },
          {
            "category": "product_version",
            "name": "4.7.04081.03",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.7.2 4.7.04081.03",
              "product_id": "11677-10855"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.7.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.04690.01",
            "product": {
              "name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 \u003c4.8.04690.01",
              "product_id": "22"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.04690.01",
            "product": {
              "name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 4.8.04690.01",
              "product_id": "11863-10051"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.04690.01",
            "product": {
              "name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 \u003c4.8.04690.01",
              "product_id": "23"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.04690.01",
            "product": {
              "name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 4.8.04690.01",
              "product_id": "11863-10049"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.04690.01",
            "product": {
              "name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 \u003c4.8.04690.01",
              "product_id": "24"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.04690.01",
            "product": {
              "name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 4.8.04690.01",
              "product_id": "11863-10378"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.04690.01",
            "product": {
              "name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 \u003c4.8.04690.01",
              "product_id": "25"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.04690.01",
            "product": {
              "name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 4.8.04690.01",
              "product_id": "11863-10379"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.04690.01",
            "product": {
              "name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 \u003c4.8.04690.01",
              "product_id": "26"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.04690.01",
            "product": {
              "name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 4.8.04690.01",
              "product_id": "11863-10483"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.04690.01",
            "product": {
              "name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 \u003c4.8.04690.01",
              "product_id": "27"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.04690.01",
            "product": {
              "name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 4.8.04690.01",
              "product_id": "11863-10543"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.09214.01",
              "product_id": "7"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01",
              "product_id": "12079-11923"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.09214.01",
              "product_id": "8"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01",
              "product_id": "12079-11924"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.09214.01",
              "product_id": "9"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01",
              "product_id": "12079-11926"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.09214.01",
              "product_id": "10"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01",
              "product_id": "12079-11927"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.09214.01",
              "product_id": "11"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01",
              "product_id": "12079-11929"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.09214.01",
              "product_id": "12"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01",
              "product_id": "12079-11930"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.09214.01",
              "product_id": "13"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01",
              "product_id": "12079-11931"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.09214.01",
              "product_id": "14"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01",
              "product_id": "12079-12085"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.09214.01",
              "product_id": "15"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01",
              "product_id": "12079-12086"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.09214.01",
              "product_id": "16"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01",
              "product_id": "12079-12097"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.09214.01",
              "product_id": "17"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01",
              "product_id": "12079-12098"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.09214.01",
              "product_id": "18"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01",
              "product_id": "12079-12099"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.09214.01",
              "product_id": "19"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01",
              "product_id": "12079-12242"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.09214.01",
              "product_id": "20"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01",
              "product_id": "12079-12243"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 \u003c4.8.09214.01",
              "product_id": "21"
            }
          },
          {
            "category": "product_version",
            "name": "4.8.09214.01",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.8.1 4.8.09214.01",
              "product_id": "12079-12244"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.8.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.7.04081.03",
            "product": {
              "name": "Microsoft .NET Framework 4.6.2 \u003c4.7.04081.03",
              "product_id": "3"
            }
          },
          {
            "category": "product_version",
            "name": "4.7.04081.03",
            "product": {
              "name": "Microsoft .NET Framework 4.6.2 4.7.04081.03",
              "product_id": "12115-9312"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 4.6.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.7.04081.03",
            "product": {
              "name": "Microsoft .NET Framework 4.6.2 \u003c4.7.04081.03",
              "product_id": "4"
            }
          },
          {
            "category": "product_version",
            "name": "4.7.04081.03",
            "product": {
              "name": "Microsoft .NET Framework 4.6.2 4.7.04081.03",
              "product_id": "12115-10287"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 4.6.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.7.04081.03",
            "product": {
              "name": "Microsoft .NET Framework 4.6.2 \u003c4.7.04081.03",
              "product_id": "5"
            }
          },
          {
            "category": "product_version",
            "name": "4.7.04081.03",
            "product": {
              "name": "Microsoft .NET Framework 4.6.2 4.7.04081.03",
              "product_id": "12115-9318"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 4.6.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c4.7.04081.03",
            "product": {
              "name": "Microsoft .NET Framework 4.6.2 \u003c4.7.04081.03",
              "product_id": "6"
            }
          },
          {
            "category": "product_version",
            "name": "4.7.04081.03",
            "product": {
              "name": "Microsoft .NET Framework 4.6.2 4.7.04081.03",
              "product_id": "12115-9344"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 4.6.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c10.0.10240.20402",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.6/4.6.2 \u003c10.0.10240.20402",
              "product_id": "1"
            }
          },
          {
            "category": "product_version",
            "name": "10.0.10240.20402",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.6/4.6.2 10.0.10240.20402",
              "product_id": "12135-10729"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.6/4.6.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c10.0.10240.20402",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.6/4.6.2 \u003c10.0.10240.20402",
              "product_id": "2"
            }
          },
          {
            "category": "product_version",
            "name": "10.0.10240.20402",
            "product": {
              "name": "Microsoft .NET Framework 3.5 AND 4.6/4.6.2 10.0.10240.20402",
              "product_id": "12135-10735"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5 AND 4.6/4.6.2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c3.0.50727.8976",
            "product": {
              "name": "Microsoft .NET Framework 2.0 Service Pack 2 \u003c3.0.50727.8976",
              "product_id": "61"
            }
          },
          {
            "category": "product_version",
            "name": "3.0.50727.8976",
            "product": {
              "name": "Microsoft .NET Framework 2.0 Service Pack 2 3.0.50727.8976",
              "product_id": "9292-9312"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 2.0 Service Pack 2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c3.0.50727.8976",
            "product": {
              "name": "Microsoft .NET Framework 2.0 Service Pack 2 \u003c3.0.50727.8976",
              "product_id": "62"
            }
          },
          {
            "category": "product_version",
            "name": "3.0.50727.8976",
            "product": {
              "name": "Microsoft .NET Framework 2.0 Service Pack 2 3.0.50727.8976",
              "product_id": "9292-9318"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 2.0 Service Pack 2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c3.0.50727.8976",
            "product": {
              "name": "Microsoft .NET Framework 3.0 Service Pack 2 \u003c3.0.50727.8976",
              "product_id": "63"
            }
          },
          {
            "category": "product_version",
            "name": "3.0.50727.8976",
            "product": {
              "name": "Microsoft .NET Framework 3.0 Service Pack 2 3.0.50727.8976",
              "product_id": "9195-9312"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.0 Service Pack 2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c3.0.50727.8976",
            "product": {
              "name": "Microsoft .NET Framework 3.0 Service Pack 2 \u003c3.0.50727.8976",
              "product_id": "64"
            }
          },
          {
            "category": "product_version",
            "name": "3.0.50727.8976",
            "product": {
              "name": "Microsoft .NET Framework 3.0 Service Pack 2 3.0.50727.8976",
              "product_id": "9195-9318"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.0 Service Pack 2"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c3.0.50727.8976",
            "product": {
              "name": "Microsoft .NET Framework 3.5 \u003c3.0.50727.8976",
              "product_id": "65"
            }
          },
          {
            "category": "product_version",
            "name": "3.0.50727.8976",
            "product": {
              "name": "Microsoft .NET Framework 3.5 3.0.50727.8976",
              "product_id": "2472-10378"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c3.0.50727.8976",
            "product": {
              "name": "Microsoft .NET Framework 3.5 \u003c3.0.50727.8976",
              "product_id": "66"
            }
          },
          {
            "category": "product_version",
            "name": "3.0.50727.8976",
            "product": {
              "name": "Microsoft .NET Framework 3.5 3.0.50727.8976",
              "product_id": "2472-10379"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c3.0.50727.8976",
            "product": {
              "name": "Microsoft .NET Framework 3.5 \u003c3.0.50727.8976",
              "product_id": "67"
            }
          },
          {
            "category": "product_version",
            "name": "3.0.50727.8976",
            "product": {
              "name": "Microsoft .NET Framework 3.5 3.0.50727.8976",
              "product_id": "2472-10483"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c3.0.50727.8976",
            "product": {
              "name": "Microsoft .NET Framework 3.5 \u003c3.0.50727.8976",
              "product_id": "68"
            }
          },
          {
            "category": "product_version",
            "name": "3.0.50727.8976",
            "product": {
              "name": "Microsoft .NET Framework 3.5 3.0.50727.8976",
              "product_id": "2472-10543"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c3.0.30729.8959",
            "product": {
              "name": "Microsoft .NET Framework 3.5.1 \u003c3.0.30729.8959",
              "product_id": "59"
            }
          },
          {
            "category": "product_version",
            "name": "3.0.30729.8959",
            "product": {
              "name": "Microsoft .NET Framework 3.5.1 3.0.30729.8959",
              "product_id": "9495-10051"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5.1"
      },
      {
        "branches": [
          {
            "category": "product_version_range",
            "name": "\u003c3.0.30729.8959",
            "product": {
              "name": "Microsoft .NET Framework 3.5.1 \u003c3.0.30729.8959",
              "product_id": "60"
            }
          },
          {
            "category": "product_version",
            "name": "3.0.30729.8959",
            "product": {
              "name": "Microsoft .NET Framework 3.5.1 3.0.30729.8959",
              "product_id": "9495-10049"
            }
          }
        ],
        "category": "product_name",
        "name": "Microsoft .NET Framework 3.5.1"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-29059",
      "cwe": {
        "id": "CWE-209",
        "name": "Generation of Error Message Containing Sensitive Information"
      },
      "notes": [
        {
          "category": "general",
          "text": "Microsoft",
          "title": "Assigning CNA"
        }
      ],
      "product_status": {
        "fixed": [
          "11650-10049",
          "11650-10051",
          "11650-10378",
          "11650-10379",
          "11650-10483",
          "11650-10543",
          "11650-10816",
          "11650-10852",
          "11650-10853",
          "11650-10855",
          "11676-11568",
          "11676-11569",
          "11676-11571",
          "11676-11572",
          "11676-11923",
          "11676-11924",
          "11676-11926",
          "11676-11927",
          "11676-11929",
          "11676-11930",
          "11676-11931",
          "11676-12097",
          "11676-12098",
          "11676-12099",
          "11677-10816",
          "11677-10852",
          "11677-10853",
          "11677-10855",
          "11677-11569",
          "11677-11571",
          "11677-11572",
          "11863-10049",
          "11863-10051",
          "11863-10378",
          "11863-10379",
          "11863-10483",
          "11863-10543",
          "12079-11923",
          "12079-11924",
          "12079-11926",
          "12079-11927",
          "12079-11929",
          "12079-11930",
          "12079-11931",
          "12079-12085",
          "12079-12086",
          "12079-12097",
          "12079-12098",
          "12079-12099",
          "12079-12242",
          "12079-12243",
          "12079-12244",
          "12115-10287",
          "12115-9312",
          "12115-9318",
          "12115-9344",
          "12135-10729",
          "12135-10735",
          "2472-10378",
          "2472-10379",
          "2472-10483",
          "2472-10543",
          "9195-9312",
          "9195-9318",
          "9292-9312",
          "9292-9318",
          "9495-10049",
          "9495-10051"
        ],
        "known_affected": [
          "1",
          "2",
          "3",
          "4",
          "5",
          "6",
          "7",
          "8",
          "9",
          "10",
          "11",
          "12",
          "13",
          "14",
          "15",
          "16",
          "17",
          "18",
          "19",
          "20",
          "21",
          "22",
          "23",
          "24",
          "25",
          "26",
          "27",
          "28",
          "29",
          "30",
          "31",
          "32",
          "33",
          "34",
          "35",
          "36",
          "37",
          "38",
          "39",
          "40",
          "41",
          "42",
          "43",
          "44",
          "45",
          "46",
          "47",
          "48",
          "49",
          "50",
          "51",
          "52",
          "53",
          "54",
          "55",
          "56",
          "57",
          "58",
          "59",
          "60",
          "61",
          "62",
          "63",
          "64",
          "65",
          "66",
          "67",
          "68"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-29059 .NET Framework Information Disclosure Vulnerability - HTML",
          "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059"
        },
        {
          "category": "self",
          "summary": "CVE-2024-29059 .NET Framework Information Disclosure Vulnerability - CSAF",
          "url": "https://msrc.microsoft.com/csaf/advisories/2024/msrc_cve-2024-29059.json"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "4.8.04690.02:Security Update:https://support.microsoft.com/help/5033910",
          "product_ids": [
            "49",
            "50",
            "51",
            "52"
          ],
          "url": "https://support.microsoft.com/help/5033910"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "4.8.04690.02:Monthly Rollup:https://support.microsoft.com/help/5034277",
          "product_ids": [
            "53",
            "54"
          ],
          "url": "https://support.microsoft.com/help/5034277"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "4.8.04690.01:Security Only:https://support.microsoft.com/help/5034269",
          "product_ids": [
            "53",
            "54",
            "22",
            "23"
          ],
          "url": "https://support.microsoft.com/help/5034269"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "4.8.04690.02:Monthly Rollup:https://support.microsoft.com/help/5034278",
          "product_ids": [
            "55",
            "56"
          ],
          "url": "https://support.microsoft.com/help/5034278"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "4.8.04690.02:Monthly Rollup:https://support.microsoft.com/help/5034279",
          "product_ids": [
            "57",
            "58"
          ],
          "url": "https://support.microsoft.com/help/5034279"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "4.8.04690.02:Security Update:https://support.microsoft.com/help/5034273",
          "product_ids": [
            "35",
            "36",
            "37",
            "38"
          ],
          "url": "https://support.microsoft.com/help/5034273"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "4.8.09214.01:Security Update:https://support.microsoft.com/help/5034272",
          "product_ids": [
            "39",
            "40",
            "7",
            "8"
          ],
          "url": "https://support.microsoft.com/help/5034272"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "4.8.04690.02:Security Update:https://support.microsoft.com/help/5034276",
          "product_ids": [
            "41",
            "42"
          ],
          "url": "https://support.microsoft.com/help/5034276"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "4.8.04690.02:Security Update:https://support.microsoft.com/help/5034274",
          "product_ids": [
            "43",
            "44",
            "45"
          ],
          "url": "https://support.microsoft.com/help/5034274"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "4.8.04690.02:Security Update:https://support.microsoft.com/help/5034275",
          "product_ids": [
            "46",
            "47",
            "48"
          ],
          "url": "https://support.microsoft.com/help/5034275"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "4.7.04081.03:Security Update:https://support.microsoft.com/help/5034273",
          "product_ids": [
            "28",
            "29",
            "30"
          ],
          "url": "https://support.microsoft.com/help/5034273"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "10.0.14393.6614:Security Update:https://support.microsoft.com/help/5034119",
          "product_ids": [
            "31",
            "32",
            "33",
            "34"
          ],
          "url": "https://support.microsoft.com/help/5034119"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "4.7.04081.03:Monthly Rollup:https://support.microsoft.com/help/5034277",
          "product_ids": [
            "22",
            "23"
          ],
          "url": "https://support.microsoft.com/help/5034277"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "4.7.04081.03:Monthly Rollup:https://support.microsoft.com/help/5034278",
          "product_ids": [
            "24",
            "25"
          ],
          "url": "https://support.microsoft.com/help/5034278"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "4.7.04081.03:Monthly Rollup:https://support.microsoft.com/help/5034279",
          "product_ids": [
            "26",
            "27"
          ],
          "url": "https://support.microsoft.com/help/5034279"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "4.8.09214.01:Security Update:https://support.microsoft.com/help/5034276",
          "product_ids": [
            "9",
            "10"
          ],
          "url": "https://support.microsoft.com/help/5034276"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "4.8.09214.01:Security Update:https://support.microsoft.com/help/5034274",
          "product_ids": [
            "11",
            "12",
            "13"
          ],
          "url": "https://support.microsoft.com/help/5034274"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "4.8.09214.01:Security Update:https://support.microsoft.com/help/5033920",
          "product_ids": [
            "14",
            "15",
            "19",
            "20"
          ],
          "url": "https://support.microsoft.com/help/5033920"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "4.8.09214.01:Security Update:https://support.microsoft.com/help/5034275",
          "product_ids": [
            "16",
            "17",
            "18"
          ],
          "url": "https://support.microsoft.com/help/5034275"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "4.8.09214.01:Security Update:https://support.microsoft.com/help/5033917",
          "product_ids": [
            "21"
          ],
          "url": "https://support.microsoft.com/help/5033917"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "4.7.04081.03:Monthly Rollup:https://support.microsoft.com/help/5034280",
          "product_ids": [
            "3",
            "4",
            "5",
            "6"
          ],
          "url": "https://support.microsoft.com/help/5034280"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "4.7.04081.02:Security Only:https://support.microsoft.com/help/5034270",
          "product_ids": [
            "3",
            "4",
            "5",
            "6"
          ],
          "url": "https://support.microsoft.com/help/5034270"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "10.0.10240.20402:Security Update:https://support.microsoft.com/help/5034134",
          "product_ids": [
            "1",
            "2"
          ],
          "url": "https://support.microsoft.com/help/5034134"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "3.0.50727.8976:Monthly Rollup:https://support.microsoft.com/help/5034280",
          "product_ids": [
            "61",
            "62",
            "63",
            "64"
          ],
          "url": "https://support.microsoft.com/help/5034280"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "3.0.50727.8976:Security Only:https://support.microsoft.com/help/5034270",
          "product_ids": [
            "61",
            "62",
            "63",
            "64"
          ],
          "url": "https://support.microsoft.com/help/5034270"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "3.0.50727.8976:Monthly Rollup:https://support.microsoft.com/help/5034278",
          "product_ids": [
            "65",
            "66"
          ],
          "url": "https://support.microsoft.com/help/5034278"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "3.0.50727.8976:Monthly Rollup:https://support.microsoft.com/help/5034279",
          "product_ids": [
            "67",
            "68"
          ],
          "url": "https://support.microsoft.com/help/5034279"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "3.0.30729.8959:Monthly Rollup:https://support.microsoft.com/help/5034277",
          "product_ids": [
            "59",
            "60"
          ],
          "url": "https://support.microsoft.com/help/5034277"
        },
        {
          "category": "vendor_fix",
          "date": "2024-03-22T07:00:00.000Z",
          "details": "3.0.30729.8959:Security Only:https://support.microsoft.com/help/5034269",
          "product_ids": [
            "59",
            "60"
          ],
          "url": "https://support.microsoft.com/help/5034269"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "environmentalsScore": 0.0,
            "exploitCodeMaturity": "UNPROVEN",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "remediationLevel": "OFFICIAL_FIX",
            "reportConfidence": "CONFIRMED",
            "scope": "UNCHANGED",
            "temporalScore": 6.5,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
            "version": "3.1"
          },
          "products": [
            "1",
            "2",
            "3",
            "4",
            "5",
            "6",
            "7",
            "8",
            "9",
            "10",
            "11",
            "12",
            "13",
            "14",
            "15",
            "16",
            "17",
            "18",
            "19",
            "20",
            "21",
            "22",
            "23",
            "24",
            "25",
            "26",
            "27",
            "28",
            "29",
            "30",
            "31",
            "32",
            "33",
            "34",
            "35",
            "36",
            "37",
            "38",
            "39",
            "40",
            "41",
            "42",
            "43",
            "44",
            "45",
            "46",
            "47",
            "48",
            "49",
            "50",
            "51",
            "52",
            "53",
            "54",
            "55",
            "56",
            "57",
            "58",
            "59",
            "60",
            "61",
            "62",
            "63",
            "64",
            "65",
            "66",
            "67",
            "68"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Information Disclosure"
        },
        {
          "category": "exploit_status",
          "details": "Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation More Likely"
        }
      ],
      "title": ".NET Framework Information Disclosure Vulnerability"
    }
  ]
}

WID-SEC-W-2024-0700

Vulnerability from csaf_certbund - Published: 2024-03-24 23:00 - Updated: 2025-02-04 23:00

Summary

Microsoft .NET Framework: Schwachstelle ermöglicht Offenlegung von Informationen

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Microsoft .NET Framework ist eine Komponente des Microsoft Windows-Betriebssystems, das die Erstellung und Ausführung von Softwareanwendungen und Webdiensten ermöglicht. Es beinhaltet sowohl eine Laufzeitumgebung als auch ein Framework von Klassenbibliotheken (APIs), u. a. für die Programmiersprache ASP (ASP.NET), den Datenzugriff (ADO.NET), intelligente Clientanwendungen (Windows Forms) und weitere.

Angriff: Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Microsoft .NET Framework ausnutzen, um Informationen offenzulegen.

Betroffene Betriebssysteme: - Windows

CVE-2024-29059

Es besteht eine Schwachstelle in Microsoft .NET Framework. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um den ObjRef-URI zu erhalten und damit vertrauliche Informationen offenzulegen.

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
Microsoft .NET Framework Microsoft	`cpe:/a:microsoft:.net_framework:-`	—

References

4 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://msrc.microsoft.com/update-guide/vulnerabi…	external
https://nvd.nist.gov/vuln/detail/CVE-2024-29059	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Microsoft .NET Framework ist eine Komponente des Microsoft Windows-Betriebssystems, das die Erstellung und Ausf\u00fchrung von Softwareanwendungen und Webdiensten erm\u00f6glicht. Es beinhaltet sowohl eine Laufzeitumgebung als auch ein Framework von Klassenbibliotheken (APIs), u. a. f\u00fcr die Programmiersprache ASP (ASP.NET), den Datenzugriff (ADO.NET), intelligente Clientanwendungen (Windows Forms) und weitere.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Microsoft .NET Framework ausnutzen, um Informationen offenzulegen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-0700 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0700.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-0700 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0700"
      },
      {
        "category": "external",
        "summary": "Microsoft Update Guide vom 2024-03-24",
        "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059"
      },
      {
        "category": "external",
        "summary": "NIST Vulnerability Database vom 2024-03-24",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29059"
      }
    ],
    "source_lang": "en-US",
    "title": "Microsoft .NET Framework: Schwachstelle erm\u00f6glicht Offenlegung von Informationen",
    "tracking": {
      "current_release_date": "2025-02-04T23:00:00.000+00:00",
      "generator": {
        "date": "2025-02-05T09:05:06.376+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.10"
        }
      },
      "id": "WID-SEC-W-2024-0700",
      "initial_release_date": "2024-03-24T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-03-24T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2025-02-04T23:00:00.000+00:00",
          "number": "2",
          "summary": "Aktive Ausnutzung gemeldet"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Microsoft .NET Framework",
            "product": {
              "name": "Microsoft .NET Framework",
              "product_id": "T033641",
              "product_identification_helper": {
                "cpe": "cpe:/a:microsoft:.net_framework:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Microsoft"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-29059",
      "notes": [
        {
          "category": "description",
          "text": "Es besteht eine Schwachstelle in Microsoft .NET Framework. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um den ObjRef-URI zu erhalten und damit vertrauliche Informationen offenzulegen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T033641"
        ]
      },
      "release_date": "2024-03-24T23:00:00.000+00:00",
      "title": "CVE-2024-29059"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2024-29059 (GCVE-0-2024-29059)

CISA KEV

Known Exploited Vulnerability - GCVE BCP-07 Compliant

Timestamps

Scope

Evidence

Vendor Report Successful Exploitation Confidence: 80% Source: cisa-kev

Details

References

KEVintel KEV

Known Exploited Vulnerability - GCVE BCP-07 Compliant

Timestamps

Scope

Evidence

Public Report Successful Exploitation Confidence: 70% Source: kevintel

Details

References

Solution

Solution

Tags

Sightings

Nomenclature