CVE-2025-21171

CWE-122Heap-based Buffer Overflow7 documents6 sources
Severity
7.5HIGH
No vector
EPSS
0.6%
top 30.73%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
Microsoft .net 9.0Microsoft Microsoft Visual Studio 2022 Version 17.10Microsoft Microsoft Visual Studio 2022 Version 17.12+3 more
Timeline
PublishedJan 14
Latest updateJan 16

Description

.NET Remote Code Execution Vulnerability .NET Remote Code Execution Vulnerability

Affected Packages19 packages

CVEListV5microsoft/.net_9.09.0.09.0.1
CVEListV5microsoft/powershell_7.57.5.07.5.0

🔴Vulnerability Details

4
OSV
dotnet8, dotnet9 vulnerabilities2025-01-16
OSV
Microsoft Security Advisory CVE-2025-21171 | .NET Remote Code Execution Vulnerability2025-01-14
GHSA
Microsoft Security Advisory CVE-2025-21171 | .NET Remote Code Execution Vulnerability2025-01-14
CVEList
.NET Remote Code Execution Vulnerability2025-01-14

📋Vendor Advisories

3
Ubuntu
.NET vulnerabilities2025-01-16
Red Hat
dotnet: .NET Remote Code Execution Vulnerability2025-01-14
Microsoft
.NET Remote Code Execution Vulnerability2025-01-14
CVE-2025-21171 (HIGH CVSS 7.5) | .NET Remote Code Execution Vulnerab | cvebase.io