cbcvebase.
CVE-2024-43498
published 2024-11-12

CVE-2024-43498: .NET and Visual Studio Remote Code Execution Vulnerability

PriorityP263critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
3.51%
87.7th percentile
.NET and Visual Studio Remote Code Execution Vulnerability

Affected

21 ranges
VendorProductVersion rangeFixed in
microsoftmicrosoft_visual_studio_2022_version_17.10>= 17.10 < 17.10.917.10.9
microsoftmicrosoft_visual_studio_2022_version_17.11>= 17.11 < 17.11.617.11.6
microsoftmicrosoft_visual_studio_2022_version_17.6>= 17.6.0 < 17.6.2117.6.21
microsoftmicrosoft_visual_studio_2022_version_17.8>= 17.8.0 < 17.8.1617.8.16
microsoftnet
microsoftnet_9.0>= 9.0.0 < 9.0.09.0.0
microsoftpowershell_7.5>= 7.5.0 < 7.5.07.5.0
microsoftvisual_studio_2022>= 17.10.0 < 17.10.917.10.9
microsoftvisual_studio_2022>= 17.11.0 < 17.11.617.11.6
microsoftvisual_studio_2022>= 17.6 < 17.6.2117.6.21
microsoftvisual_studio_2022>= 17.8 < 17.8.1617.8.16
msrcmicrosoft_visual_studio_2022_version_17.10
msrcmicrosoft_visual_studio_2022_version_17.11
msrcmicrosoft_visual_studio_2022_version_17.6
msrcmicrosoft_visual_studio_2022_version_17.8
msrcnet_9.0_installed_on_linux
msrcnet_9.0_installed_on_mac_os
msrcnet_9.0_installed_on_windows
msrcpowershell_7.5_installed_on_linux
msrcpowershell_7.5_installed_on_macos
msrcpowershell_7.5_installed_on_windows

Detection & IOCsextracted from sources · hover to see the quote

  • Vulnerability is in the .NET Core NrbfDecoder component; monitor for type confusion exploitation attempts targeting this component in .NET 9.0 applications
  • Attack vector includes specially crafted HTTP requests to .NET web applications — inspect/alert on anomalous or malformed requests to .NET 9.0 webapps
  • Attack vector also includes loading a specially crafted file into a vulnerable .NET 9.0 desktop application — monitor for suspicious file loads in .NET desktop app processes
  • ·This vulnerability is limited exclusively to .NET 9.0 Core; all other .NET versions (6.0, 7.0, 8.0) are NOT affected and do not require remediation for this CVE
  • ·No mitigation is available from Red Hat; patching via system update is the only remediation path
  • ·Exploit has not been publicly disclosed or observed in the wild at time of advisory publication

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
ghsa9.8CRITICAL
osv9.8CRITICAL
vendor_msrc9.8CRITICAL
vendor_redhat9.8CRITICAL
vendor_ubuntu9.8CRITICAL
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.