cbcvebase.
CVE-2023-38180
published 2023-08-08

CVE-2023-38180: .NET and Visual Studio Denial of Service Vulnerability

high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
KEVITW
CISA Known Exploited Vulnerabilitydue 2023-08-30
Exploited in the wild
.NET and Visual Studio Denial of Service Vulnerability

Affected

26 ranges· showing 25
VendorProductVersion rangeFixed in
fedoraprojectfedora
fedoraprojectfedora
microsoftasp.net_core>= 2.1 < 2.1.402.1.40
microsoftasp.net_core_2.1>= 2.0 < 2.1.402.1.40
microsoftmicrosoft.aspnetcore.app.runtime.win-arm64>= 6.0.0 < 6.0.216.0.21
microsoftmicrosoft.aspnetcore.app.runtime.win-arm64>= 7.0.0 < 7.0.107.0.10
microsoftmicrosoft.aspnetcore.app.runtime.win-x64>= 6.0.0 < 6.0.216.0.21
microsoftmicrosoft.aspnetcore.app.runtime.win-x64>= 7.0.0 < 7.0.107.0.10
microsoftmicrosoft.aspnetcore.app.runtime.win-x86>= 6.0.0 < 6.0.216.0.21
microsoftmicrosoft.aspnetcore.app.runtime.win-x86>= 7.0.0 < 7.0.107.0.10
microsoftmicrosoft_visual_studio_2022_version_17.2>= 17.2.0 < 17.2.1817.2.18
microsoftmicrosoft_visual_studio_2022_version_17.4>= 17.4.0 < 17.4.1017.4.10
microsoftmicrosoft_visual_studio_2022_version_17.6>= 17.6.0 < 17.6.617.6.6
microsoftnet>= 6.0.0 < 6.0.216.0.21
microsoftnet>= 7.0.0 < 7.0.107.0.10
microsoftnet_6.0>= 6.0.0 < 6.0.216.0.21
microsoftnet_7.0>= 7.0.0 < 7.0.107.0.10
microsoftvisual_studio_2022>= 17.2.0 < 17.2.1817.2.18
microsoftvisual_studio_2022>= 17.4.0 < 17.4.1017.4.10
microsoftvisual_studio_2022>= 17.6.0 < 17.6.617.6.6
msrcasp.net_core_2.1
msrcmicrosoft_visual_studio_2022_version_17.2
msrcmicrosoft_visual_studio_2022_version_17.4
msrcmicrosoft_visual_studio_2022_version_17.6
msrcnet_6.0

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
ghsa7.5HIGH
osv7.8HIGH
vulncheck7.5HIGH
cisa7.5HIGH