CVE-2022-41064

5 documents5 sources

Severity

5.8MEDIUM

EPSS

0.2%

top 62.14%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

11

Microsoft Microsoft .net Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 Microsoft Microsoft .net Framework 4.6.2 Microsoft Microsoft .net Framework 4.6.2/4.7/4.7.1/4.7.2 +8 more

Timeline

PublishedNov 9

Description

.NET Framework Information Disclosure Vulnerability

CVSS vector

CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:NExploitability: 1.3 | Impact: 4.0

Affected Packages13 packages

▶CVEListV5microsoft/microsoft_.net_framework_4.84.8.0 — 4.8.04584.08

▶CVEListV5microsoft/microsoft_.net_framework_4.6.24.7.0 — 4.7.04005.02

▶CVEListV5microsoft/microsoft_.net_framework_4.7.210.0.0.0 — 10.0.04005.02

▶CVEListV5microsoft/microsoft_.net_framework_4.8.14.8.0.0 — 4.8.09110.07

▶CVEListV5microsoft/microsoft_.net_framework_4.6/4.6.210.0.0.0 — 10.0.10240.19567

Patches

Patch: portal.msrc.microsoft.com ↗

🔴Vulnerability Details

3

CVEList

.NET Framework Information Disclosure Vulnerability↗2022-11-09

▶

GHSA

.NET Information Disclosure Vulnerability↗2022-11-08

▶

OSV

.NET Information Disclosure Vulnerability↗2022-11-08

▶

📋Vendor Advisories

1

Microsoft

.NET Framework Information Disclosure Vulnerability↗2022-11-08

▶

CVE-2022-41064 (MEDIUM CVSS 5.8) | .NET Framework Information Disclosu | cvebase.io