CVE-2023-36796

CWE-191CWE-787Out-of-bounds Write5 documents5 sources
Severity
7.8HIGH
No vector
EPSS
1.2%
top 20.76%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
23
Microsoft .net 6.0Microsoft .net 7.0Microsoft Microsoft .net Framework 2.0 Service Pack 2+20 more
Timeline
PublishedSep 12
Latest updateSep 13

Description

Visual Studio Remote Code Execution Vulnerability Visual Studio Remote Code Execution Vulnerability

Affected Packages26 packages

CVEListV5microsoft/microsoft_visual_studio_2013_update_512.0.012.0.40707.0
CVEListV5microsoft/microsoft_visual_studio_2015_update_314.0.014.0.27559.0

🔴Vulnerability Details

3
CVEList
Visual Studio Remote Code Execution Vulnerability2023-09-12
GHSA
Microsoft Security Advisory CVE-2023-36796: .NET Remote Code Execution Vulnerability2023-09-12
OSV
Microsoft Security Advisory CVE-2023-36796: .NET Remote Code Execution Vulnerability2023-09-12

📋Vendor Advisories

2
Red Hat
dotnet: Out-of-bounds write when loading PDB type records in msdia140.dll used by Visual Studio2023-09-13
Microsoft
Visual Studio Remote Code Execution Vulnerability2023-09-12