THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Zendesk (Helpdesk and Chat)

Ok

PUBLISHED

CVE-2024-21409

.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

Reserved:2023-12-08
Published:2024-04-09
Updated:2024-05-28

Description

.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability



HIGH: 7.3CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Problem types

CWE-416: Use After Free

Product status

17.0 before 17.9.6
affected

17.4.0 before 17.4.18
affected

17.6.0 before 17.6.14
affected

17.8.0 before 17.8.9
affected

7.3.0 before 7.3.12
affected

7.4.0 before 7.4.2
affected

7.2.0 before 7.2.19
affected

6.0.0 before 6.0.29
affected

7.0.0 before 7.0.18
affected

1.0.0 before 8.0.4
affected

4.8.0 before 4.8.4718.0
affected

4.8.0 before 4.8.4718.0
affected

4.7.0 before 4.7.4092.0
affected

4.7.0 before 10.0.14393.6897
affected

4.7.0 before 4.7.4092.0
affected

4.8.1 before 4.8.9236.0
affected

4.8.1 before 4.8.9206.0
affected

4.7.0 before 4.7.4092.0
affected

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21409 (.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability) vendor-advisory

cve.org CVE-2024-21409

nvd.nist.gov CVE-2024-21409

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-21409