CVE-2024-21409
published 2024-04-09CVE-2024-21409: .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability
high7.3CVSS 3.1
AVLACLPRLUIRSUCHIHAH
.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability
Affected
49 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | microsoft_net_framework_3.5_and_4.7.2 | >= 4.7.0 < 4.7.4092.0 | 4.7.4092.0 |
| microsoft | microsoft_net_framework_3.5_and_4.8 | >= 4.8.0 < 4.8.4718.0 | 4.8.4718.0 |
| microsoft | microsoft_net_framework_3.5_and_4.8.1 | >= 4.8.1 < 4.8.9236.0 | 4.8.9236.0 |
| microsoft | microsoft_net_framework_4.6.2 | >= 4.7.0 < 4.7.4092.0 | 4.7.4092.0 |
| microsoft | microsoft_net_framework_4.6.2_4.7_4.7.1_4.7.2 | >= 4.7.0 < 4.7.4092.0 | 4.7.4092.0 |
| microsoft | microsoft_net_framework_4.8 | >= 4.8.0 < 4.8.4718.0 | 4.8.4718.0 |
| microsoft | microsoft_visual_studio_2022_version_17.4 | >= 17.4.0 < 17.4.18 | 17.4.18 |
| microsoft | microsoft_visual_studio_2022_version_17.6 | >= 17.6.0 < 17.6.14 | 17.6.14 |
| microsoft | microsoft_visual_studio_2022_version_17.8 | >= 17.8.0 < 17.8.9 | 17.8.9 |
| microsoft | microsoft_visual_studio_2022_version_17.9 | >= 17.0 < 17.9.6 | 17.9.6 |
| microsoft | net | >= 6.0.0 < 6.0.29 | 6.0.29 |
| microsoft | net | >= 7.0.0 < 7.0.18 | 7.0.18 |
| microsoft | net | >= 8.0.0 < 8.0.4 | 8.0.4 |
| microsoft | net_6.0 | >= 6.0.0 < 6.0.29 | 6.0.29 |
| microsoft | net_7.0 | >= 7.0.0 < 7.0.18 | 7.0.18 |
| microsoft | net_8.0 | >= 8.0 < 8.0.4 | 8.0.4 |
| microsoft | net_framework | — | — |
| microsoft | net_framework | — | — |
| microsoft | net_framework | — | — |
| microsoft | net_framework | — | — |
| microsoft | net_framework | — | — |
| microsoft | net_framework | — | — |
| microsoft | net_framework | — | — |
| microsoft | powershell | >= 7.2 < 7.2.19 | 7.2.19 |
| microsoft | powershell | >= 7.3 < 7.3.12 | 7.3.12 |
CVSS provenance
nvdv3.17.3HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
ghsa7.3HIGH
osv7.3HIGH