CVE-2023-36793

CWE-122Heap-based Buffer OverflowCWE-787Out-of-bounds Write8 documents5 sources
Severity
7.8HIGH
No vector
EPSS
1.9%
top 16.76%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
21
Microsoft .net 6.0Microsoft .net 7.0Microsoft Microsoft .net Framework 2.0 Service Pack 2+18 more
Timeline
PublishedSep 12
Latest updateSep 13

Description

Visual Studio Remote Code Execution Vulnerability Visual Studio Remote Code Execution Vulnerability

Affected Packages24 packages

🔴Vulnerability Details

6
CVEList
Visual Studio Remote Code Execution Vulnerability2023-09-12
OSV
Microsoft Security Advisory CVE-2023-36793: .NET Remote Code Execution Vulnerability2023-09-12
GHSA
Microsoft Security Advisory CVE-2023-36793: .NET Remote Code Execution Vulnerability2023-09-12
GHSA
Microsoft Security Advisory CVE-2023-36792: .NET Remote Code Execution Vulnerability2023-09-12
GHSA
Microsoft Security Advisory CVE-2023-36794: .NET Remote Code Execution Vulnerability2023-09-12

📋Vendor Advisories

2
Red Hat
dotnet: Out-of-bounds write when loading PDB type records in msdia140.dll used by Visual Studio2023-09-13
Microsoft
Visual Studio Remote Code Execution Vulnerability2023-09-12