Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

microsoft .net framework 4.6 vulnerabilities and exploits

(subscribe to this query)
5
CVSSv2

CVE-2015-2526

Microsoft .NET Framework 4.5, 4.5.1, 4.5.2, and 4.6 allows remote malicious users to cause a denial of service to an ASP.NET web site via crafted requests, aka "MVC Denial of Service Vulnerability."
Microsoft .net Framework 4.5Microsoft .net Framework 4.5.1Microsoft .net Framework 4.5.2Microsoft .net Framework 4.6
7.8
CVSSv3

CVE-2016-0148

Microsoft .NET Framework 4.6 and 4.6.1 mishandles library loading, which allows local users to gain privileges via a crafted application, aka ".NET Framework Remote Code Execution Vulnerability."
Microsoft .net Framework 4.6Microsoft .net Framework 4.6.1
4.3
CVSSv2

CVE-2015-6099

Cross-site scripting (XSS) vulnerability in ASP.NET in Microsoft .NET Framework 4, 4.5, 4.5.1, 4.5.2, and 4.6 allows remote malicious users to inject arbitrary web script or HTML via a crafted value, aka ".NET Elevation of Privilege Vulnerability."
Microsoft .net Framework 4.0Microsoft .net Framework 4.5Microsoft .net Framework 4.5.1Microsoft .net Framework 4.5.2Microsoft .net Framework 4.6
7.5
CVSSv3

CVE-2016-0033

Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 does not prevent recursive compilation of XSLT transforms, which allows remote malicious users to cause a denial of service (performance degradation) via crafted XSLT data, aka ".NET Framework Stack Overflow...
Microsoft .net Framework 2.0Microsoft .net Framework 3.5Microsoft .net Framework 3.5.1Microsoft .net Framework 4.5.2Microsoft .net Framework 4.6Microsoft .net Framework 4.6.1
7.5
CVSSv3

CVE-2016-3255

Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 allows remote malicious users to read arbitrary files via XML data containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, aka ".NET ...
Microsoft .net Framework 2.0Microsoft .net Framework 3.5Microsoft .net Framework 3.5.1Microsoft .net Framework 4.5.2Microsoft .net Framework 4.6Microsoft .net Framework 4.6.1
7.5
CVSSv3

CVE-2016-0047

WinForms in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 allows remote malicious users to obtain sensitive information from process memory via crafted icon data, aka "Windows Forms Information Disclosure Vulnerability."
Microsoft .net Framework 2.0Microsoft .net Framework 3.5Microsoft .net Framework 3.5.1Microsoft .net Framework 4.5.2Microsoft .net Framework 4.6Microsoft .net Framework 4.6.1
3.3
CVSSv3

CVE-2022-30130

.NET Framework Denial of Service Vulnerability
Microsoft Microsoft .net Framework 4.6.2/4.7/4.7.1/4.7.2Microsoft Microsoft .net Framework 4.6.2Microsoft Microsoft .net Framework 3.5 And 4.6/4.6.2Microsoft .netMicrosoft .net Framework 3.5Microsoft .net Framework 4.6.2Microsoft .net Framework 4.7Microsoft .net Framework 4.7.1Microsoft .net Framework 4.7.2Microsoft .net Framework 4.8Microsoft .net Framework 3.5.1Microsoft .net Framework 4.6
9.8
CVSSv3

CVE-2016-0132

Microsoft .NET Framework 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 mishandles signature validation for unspecified elements of XML documents, which allows remote malicious users to spoof signatures via a modified document, aka ".NET XML Validation Security Feature ...
Microsoft .net Framework 2.0Microsoft .net Framework 3.0Microsoft .net Framework 3.5Microsoft .net Framework 3.5.1Microsoft .net Framework 4.5.2Microsoft .net Framework 4.6Microsoft .net Framework 4.6.1
5.9
CVSSv3

CVE-2016-0149

Microsoft .NET Framework 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 allows man-in-the-middle malicious users to obtain sensitive cleartext information via vectors involving injection of cleartext data into the client-server data stream, aka "TLS/SSL Information Disc...
Microsoft .net Framework 2.0Microsoft .net Framework 3.0Microsoft .net Framework 3.5Microsoft .net Framework 3.5.1Microsoft .net Framework 4.5.2Microsoft .net Framework 4.6Microsoft .net Framework 4.6.1
7.5
CVSSv3

CVE-2021-24111

.NET Framework Denial of Service Vulnerability
Microsoft .net Framework 4.6Microsoft .net Framework 4.6.2Microsoft .net Framework 4.7Microsoft .net Framework 4.7.1Microsoft .net Framework 4.7.2Microsoft .net Framework 4.6.1Microsoft .net Framework 4.8
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
sourcecodesterCVE-2025-42599memory leakdifyCVE-2025-3826CVE-2025-30158tenableCVE-2025-2492cameraunprivilegedCVE-2025-3795CVE-2025-43918hiddenpearls
Home
/
Search Results
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook