CVE-2020-16937
published 2020-10-16CVE-2020-16937: An information disclosure vulnerability exists when the .NET Framework improperly handles objects in memory. An attacker who successfully exploited the…
medium5.5CVSS 3.1
AVLACLPRNUIRSUCHINAN
An information disclosure vulnerability exists when the .NET Framework improperly handles objects in memory. An attacker who successfully exploited the vulnerability could disclose contents of an affected system's memory.
To exploit the vulnerability, an authenticated attacker would need to run a specially crafted application.
The update addresses the vulnerability by correcting how the .NET Framework handles objects in memory.
Affected
35 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | microsoft_net_framework_2.0_service_pack_2 | >= 2.0.0 < publication | publication |
| microsoft | microsoft_net_framework_3.5 | >= 3.5.0 < publication | publication |
| microsoft | microsoft_net_framework_3.5.1 | >= 3.5.0 < publication | publication |
| microsoft | microsoft_net_framework_3.5_and_4.6.2_4.7_4.7.1_4.7.2 | >= 3.0.0.0 < publication | publication |
| microsoft | microsoft_net_framework_3.5_and_4.6_4.6.1_4.6.2 | >= 3.5.0 < publication | publication |
| microsoft | microsoft_net_framework_3.5_and_4.7.1_4.7.2 | >= 3.0 < publication | publication |
| microsoft | microsoft_net_framework_3.5_and_4.7.2 | >= 4.7.0 < publication | publication |
| microsoft | microsoft_net_framework_3.5_and_4.8 | >= 4.8.0 < publication | publication |
| microsoft | microsoft_net_framework_4.5.2 | >= 4.0.0.0 < publication | publication |
| microsoft | microsoft_net_framework_4.6 | >= 4.0.0.0 < publication | publication |
| microsoft | microsoft_net_framework_4.6_4.6.1_4.6.2_4.7_4.7.1_4.7.2 | >= 4.0.0.0 < publication | publication |
| microsoft | microsoft_net_framework_4.8 | >= 4.8.0 < publication | publication |
| microsoft | net_framework | — | — |
| microsoft | net_framework | — | — |
| microsoft | net_framework | — | — |
| microsoft | net_framework | — | — |
| microsoft | net_framework | — | — |
| microsoft | net_framework | — | — |
| microsoft | net_framework | — | — |
| microsoft | net_framework | — | — |
| microsoft | net_framework | — | — |
| microsoft | net_framework | — | — |
| microsoft | net_framework | — | — |
| msrc | microsoft_net_framework_2.0_service_pack_2 | — | — |
| msrc | microsoft_net_framework_3.5 | — | — |