Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
.net framework vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2019-11397
GetFile.aspx in Rapid4 RapidFlows Enterprise Application Builder 4.5M.23 (when used with .NET Framework 4.5) allows Local File Inclusion via the FileDesc parameter.
Rapidflows Rapid4 4.5m.23
Microsoft .net Framework 4.5
5.5
CVSSv3
CVE-2016-3209
Graphics Device Interface (aka GDI or GDI+) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; Office 2007 SP3; Office 2010 SP2; Word Viewer; Skype for B...
Microsoft Silverlight 5.0
Microsoft .net Framework 4.6
Microsoft Word Viewer -
Microsoft Office 2010
Microsoft Windows Server 2012 -
Microsoft Windows 8.1
Microsoft Windows 7 -
Microsoft .net Framework 4.5.2
Microsoft .net Framework 3.5.1
Microsoft Office 2007
Microsoft Windows 10 1607
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2008 -
Microsoft Lync 2010
Microsoft Lync 2013
Microsoft Skype For Business 2016
Microsoft Windows Rt 8.1 -
Microsoft Windows Server 2012 R2
Microsoft Live Meeting 2007
Microsoft .net Framework 3.5
Microsoft .net Framework 3.0
Microsoft Windows 10 1511
1 EDB exploit
NA
CVE-2011-1977
The ASP.NET Chart controls in Microsoft .NET Framework 4, and Chart Control for Microsoft .NET Framework 3.5 SP1, do not properly verify functions in URIs, which allows remote malicious users to read arbitrary files via special characters in a URI in an HTTP request, aka "Ch...
Microsoft .net Framework 4.0
Microsoft Chart Control For Microsoft .net Framework 3.5
8.8
CVSSv3
CVE-2016-0145
The font library in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold and 1511; Office 2007 SP3 and 2010 SP2; Word Viewer; .NET Framework 3.0 SP2, 3.5, and 3.5.1; Skype for...
Microsoft .net Framework 3.5
Microsoft .net Framework 3.0
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2012 -
Microsoft Skype For Business 2016
Microsoft .net Framework 3.5.1
Microsoft Windows 10 -
Microsoft Windows Rt 8.1 -
Microsoft Lync 2010
Microsoft Office 2007
Microsoft Windows 10 1511
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2008 -
Microsoft Windows Vista
Microsoft Live Meeting 2007
Microsoft Lync 2013
Microsoft Word Viewer
Microsoft Office 2010
Microsoft Windows 8.1
Microsoft Windows 7 -
1 EDB exploit
NA
CVE-2005-2127
Microsoft Internet Explorer 5.01, 5.5, and 6 allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via a web page with embedded CLSIDs that reference certain COM objects that are not intended for use within Internet Exp...
Microsoft Office 2000
Microsoft Office Xp
Microsoft Project 98
Microsoft Visio 2002
Microsoft Visio 2003
Microsoft Visual Studio .net 2002
Microsoft Visual Studio .net Gold
Microsoft .net Framework 1.1
Microsoft Project 2002
Microsoft Project 2003
Microsoft Office
Microsoft Visio 2000
Ati Catalyst Driver
Microsoft Project 2000
Microsoft Visual Studio .net 2003
1 EDB exploit
1 Github repository
5.5
CVSSv3
CVE-2018-8356
A security feature bypass vulnerability exists when Microsoft .NET Framework components do not correctly validate certificates, aka ".NET Framework Security Feature Bypass Vulnerability." This affects .NET Framework 4.7.2, Microsoft .NET Framework 3.0, Microsoft .NET Fr...
Microsoft .net Framework 3.0
Microsoft .net Framework 3.5
Microsoft .net Framework 3.5.1
Microsoft .net Framework 4.5.2
Microsoft .net Framework 4.6
Microsoft .net Framework 4.6.2
Microsoft .net Framework 4.7
Microsoft .net Framework 4.7.1
Microsoft .net Framework 4.7.2
Microsoft .net Framework 4.6.1
Microsoft Powershell Core 6.1
Microsoft Powershell Core 6.0
Microsoft .net Core 2.0
Microsoft .net Core 1.0
Microsoft .net Core 1.1
Microsoft .net Framework Developer Pack 4.7.2
Microsoft Asp.net Core 1.0
Microsoft Asp.net Core 1.1
Microsoft Asp.net Core 2.0
7.5
CVSSv3
CVE-2019-0980
A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and .Net Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981.
Microsoft .net Core 2.1
Microsoft .net Core 2.2
Microsoft .net Core 1.0
Microsoft .net Core 1.1
Microsoft .net Framework 3.0
Microsoft .net Framework 2.0
Microsoft .net Framework 3.5
Microsoft .net Framework 3.5.1
Microsoft .net Framework 4.5.2
Microsoft .net Framework 4.6
Microsoft .net Framework 4.6.2
Microsoft .net Framework 4.7.2
Microsoft .net Framework 4.7
Microsoft .net Framework 4.7.1
Microsoft .net Framework 4.6.1
Microsoft .net Framework 4.8
1 Github repository
1 Article
7.5
CVSSv3
CVE-2019-0981
A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and .Net Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0820, CVE-2019-0980.
Microsoft .net Core 2.2
Microsoft .net Core 1.0
Microsoft .net Core 1.1
Microsoft .net Core 2.1
Microsoft .net Framework 2.0
Microsoft .net Framework 3.0
Microsoft .net Framework 3.5
Microsoft .net Framework 3.5.1
Microsoft .net Framework 4.5.2
Microsoft .net Framework 4.6
Microsoft .net Framework 4.6.2
Microsoft .net Framework 4.7.2
Microsoft .net Framework 4.7
Microsoft .net Framework 4.7.1
Microsoft .net Framework 4.6.1
Microsoft .net Framework 4.8
1 Github repository
1 Article
8.8
CVSSv3
CVE-2020-0605
A remote code execution vulnerability exists in .NET software when the software fails to check the source markup of a file.An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user, aka '.NET Framework Remote Code Ex...
Microsoft .net Framework 3.0
Microsoft .net Framework 3.5
Microsoft .net Framework 4.6.2
Microsoft .net Framework 4.7
Microsoft .net Framework 4.7.1
Microsoft .net Framework 4.7.2
Microsoft .net Framework 4.8
Microsoft .net Framework 3.5.1
Microsoft .net Framework 4.5.2
Microsoft .net Framework 4.6
Microsoft .net Framework 4.6.1
Microsoft .net Core 1.0
Microsoft .net Core 3.0
Microsoft .net Core 3.1
2 Articles
7.5
CVSSv3
CVE-2020-1108
A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests, aka '.NET Core & .NET Framework Denial of Service Vulnerability'.
Microsoft .net Core
Microsoft .net 5.0
Microsoft .net Framework 2.0
Microsoft .net Framework 3.0
Microsoft .net Framework 4.6
Microsoft .net Framework 3.5
Microsoft .net Framework 4.5.2
Microsoft .net Framework 4.6.1
Microsoft .net Framework 4.6.2
Microsoft .net Framework 4.7
Microsoft .net Framework 4.7.1
Microsoft .net Framework 4.7.2
Microsoft .net Framework 4.8
Microsoft .net Framework 3.5.1
Microsoft .net Core 2.1
Microsoft Visual Studio 2017 15.9
Microsoft Visual Studio 2019 16.0
Microsoft .net Core 3.1
Microsoft Visual Studio 2019 16.4
Microsoft Visual Studio 2019 16.5
Microsoft Powershell Core 6.2
Microsoft Powershell 7.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »