CVE-2023-28260: .NET DLL Hijacking Remote Code Execution Vulnerability

high7.8CVSS 3.1

AVLACLPRLUINSUCHIHAH

.NET DLL Hijacking Remote Code Execution Vulnerability

30 ranges· showing 25

Vendor	Product	Version range	Fixed in
microsoft	microsoft.netcore.app.runtime.win-arm	>= 6.0.0 < 6.0.16	6.0.16
microsoft	microsoft.netcore.app.runtime.win-arm	>= 7.0.0 < 7.0.5	7.0.5
microsoft	microsoft.netcore.app.runtime.win-arm64	>= 6.0.0 < 6.0.16	6.0.16
microsoft	microsoft.netcore.app.runtime.win-arm64	>= 7.0.0 < 7.0.5	7.0.5
microsoft	microsoft.netcore.app.runtime.win-x64	>= 6.0.0 < 6.0.16	6.0.16
microsoft	microsoft.netcore.app.runtime.win-x64	>= 7.0.0 < 7.0.5	7.0.5
microsoft	microsoft.netcore.app.runtime.win-x86	>= 6.0.0 < 6.0.16	6.0.16
microsoft	microsoft.netcore.app.runtime.win-x86	>= 7.0.0 < 7.0.5	7.0.5
microsoft	microsoft_visual_studio_2022_version_17.0	>= 17.0.0 < 17.0.21	17.0.21
microsoft	microsoft_visual_studio_2022_version_17.2	>= 17.2.0 < 17.2.15	17.2.15
microsoft	microsoft_visual_studio_2022_version_17.4	>= 17.4.0 < 17.4.7	17.4.7
microsoft	microsoft_visual_studio_2022_version_17.5	>= 17.5.0 < 17.5.4	17.5.4
microsoft	net	>= 6.0.0 < 6.0.16	6.0.16
microsoft	net	>= 7.0.0 < 7.0.5	7.0.5
microsoft	net_6.0	>= 6.0.0 < 6.0.16	6.0.16
microsoft	net_7.0	>= 7.0.0 < 7.0.5	7.0.5
microsoft	powershell_7.2	>= 7.2.0 < 7.2.11	7.2.11
microsoft	powershell_7.3	>= 7.3.0 < 7.3.4	7.3.4
microsoft	visual_studio_2022	>= 17.0 < 17.0.21	17.0.21
microsoft	visual_studio_2022	>= 17.2 < 17.2.15	17.2.15
microsoft	visual_studio_2022	>= 17.4 < 17.4.7	17.4.7
microsoft	visual_studio_2022	>= 17.5 < 17.5.4	17.5.4
msrc	microsoft_visual_studio_2022_version_17.0	—	—
msrc	microsoft_visual_studio_2022_version_17.2	—	—
msrc	microsoft_visual_studio_2022_version_17.4	—	—

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

ghsa7.8HIGH

osv7.8HIGH