CVE-2023-24897: .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

high7.8CVSS 3.1

AVLACLPRNUIRSUCHIHAH

.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

Affected

64 ranges· showing 25

Vendor	Product	Version range	Fixed in
microsoft	microsoft.netcore.app.runtime.win-arm	>= 6.0.0 < 6.0.18	6.0.18
microsoft	microsoft.netcore.app.runtime.win-arm	>= 7.0.0 < 7.0.7	7.0.7
microsoft	microsoft.netcore.app.runtime.win-arm64	>= 6.0.0 < 6.0.18	6.0.18
microsoft	microsoft.netcore.app.runtime.win-arm64	>= 7.0.0 < 7.0.7	7.0.7
microsoft	microsoft.netcore.app.runtime.win-x64	>= 6.0.0 < 6.0.18	6.0.18
microsoft	microsoft.netcore.app.runtime.win-x64	>= 7.0.0 < 7.0.7	7.0.7
microsoft	microsoft.netcore.app.runtime.win-x86	>= 6.0.0 < 6.0.18	6.0.18
microsoft	microsoft.netcore.app.runtime.win-x86	>= 7.0.0 < 7.0.7	7.0.7
microsoft	microsoft_net_framework_3.5_and_4.6.2	>= 4.7.0 < 10.0.10240.19983	10.0.10240.19983
microsoft	microsoft_net_framework_3.5_and_4.6.2_4.7_4.7.1_4.7.2	>= 3.0.0.0 < 10.0.14393.5989	10.0.14393.5989
microsoft	microsoft_net_framework_3.5_and_4.7.2	>= 4.7.0 < 4.7.4050.0	4.7.4050.0
microsoft	microsoft_net_framework_3.5_and_4.8	>= 4.8.0 < 4.8.4644.0	4.8.4644.0
microsoft	microsoft_net_framework_3.5_and_4.8.1	>= 4.8.1 < 4.8.9166.0	4.8.9166.0
microsoft	microsoft_net_framework_4.6.2	>= 4.7.0 < 4.7.04043.0	4.7.04043.0
microsoft	microsoft_net_framework_4.6.2_4.7_4.7.1_4.7.2	>= 4.7.0 < 4.7.04043.0	4.7.04043.0
microsoft	microsoft_net_framework_4.8	>= 4.8.0 < 4.8.4644.0	4.8.4644.0
microsoft	microsoft_visual_studio_2013_update_5	>= 12.0.0 < 12.0.40700.0	12.0.40700.0
microsoft	microsoft_visual_studio_2015_update_3	>= 14.0.0 < 14.0.27555.0	14.0.27555.0
microsoft	microsoft_visual_studio_2017_version_15.9	>= 15.9.0 < 15.9.55	15.9.55
microsoft	microsoft_visual_studio_2019_version_16.11	>= 16.11.0 < 16.11.27	16.11.27
microsoft	microsoft_visual_studio_2022_version_17.0	>= 17.0.0 < 17.0.22	17.0.22
microsoft	microsoft_visual_studio_2022_version_17.2	>= 17.2.0 < 17.2.16	17.2.16
microsoft	microsoft_visual_studio_2022_version_17.4	>= 17.4.0 < 17.4.8	17.4.8
microsoft	microsoft_visual_studio_2022_version_17.6	>= 17.6.0 < 17.6.3	17.6.3
microsoft	net	—	—

CVSS provenance

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

ghsa7.8HIGH

osv7.8HIGH