Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft .net framework 4.6 vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2015-2526
Microsoft .NET Framework 4.5, 4.5.1, 4.5.2, and 4.6 allows remote malicious users to cause a denial of service to an ASP.NET web site via crafted requests, aka "MVC Denial of Service Vulnerability."
Microsoft .net Framework 4.5
Microsoft .net Framework 4.5.1
Microsoft .net Framework 4.5.2
Microsoft .net Framework 4.6
383
VMScore
CVE-2015-6099
Cross-site scripting (XSS) vulnerability in ASP.NET in Microsoft .NET Framework 4, 4.5, 4.5.1, 4.5.2, and 4.6 allows remote malicious users to inject arbitrary web script or HTML via a crafted value, aka ".NET Elevation of Privilege Vulnerability."
Microsoft .net Framework 4.0
Microsoft .net Framework 4.5
Microsoft .net Framework 4.5.1
Microsoft .net Framework 4.5.2
Microsoft .net Framework 4.6
445
VMScore
CVE-2016-0033
Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 does not prevent recursive compilation of XSLT transforms, which allows remote malicious users to cause a denial of service (performance degradation) via crafted XSLT data, aka ".NET Framework Stack Overflow...
Microsoft .net Framework 4.5.2
Microsoft .net Framework 3.5.1
Microsoft .net Framework 3.5
Microsoft .net Framework 2.0
Microsoft .net Framework 4.6.1
Microsoft .net Framework 4.6
445
VMScore
CVE-2016-0047
WinForms in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 allows remote malicious users to obtain sensitive information from process memory via crafted icon data, aka "Windows Forms Information Disclosure Vulnerability."
Microsoft .net Framework 3.5.1
Microsoft .net Framework 3.5
Microsoft .net Framework 2.0
Microsoft .net Framework 4.6
Microsoft .net Framework 4.5.2
Microsoft .net Framework 4.6.1
445
VMScore
CVE-2016-3255
Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 allows remote malicious users to read arbitrary files via XML data containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, aka ".NET ...
Microsoft .net Framework 3.5
Microsoft .net Framework 2.0
Microsoft .net Framework 4.6.1
Microsoft .net Framework 4.6
Microsoft .net Framework 4.5.2
Microsoft .net Framework 3.5.1
641
VMScore
CVE-2016-0148
Microsoft .NET Framework 4.6 and 4.6.1 mishandles library loading, which allows local users to gain privileges via a crafted application, aka ".NET Framework Remote Code Execution Vulnerability."
Microsoft .net Framework 4.6.1
Microsoft .net Framework 4.6
890
VMScore
CVE-2016-0132
Microsoft .NET Framework 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 mishandles signature validation for unspecified elements of XML documents, which allows remote malicious users to spoof signatures via a modified document, aka ".NET XML Validation Security Feature ...
Microsoft .net Framework 2.0
Microsoft .net Framework 4.5.2
Microsoft .net Framework 3.5.1
Microsoft .net Framework 3.5
Microsoft .net Framework 3.0
Microsoft .net Framework 4.6.1
Microsoft .net Framework 4.6
383
VMScore
CVE-2016-0149
Microsoft .NET Framework 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 allows man-in-the-middle malicious users to obtain sensitive cleartext information via vectors involving injection of cleartext data into the client-server data stream, aka "TLS/SSL Information Disc...
Microsoft .net Framework 3.5
Microsoft .net Framework 3.0
Microsoft .net Framework 2.0
Microsoft .net Framework 4.6
Microsoft .net Framework 4.5.2
Microsoft .net Framework 3.5.1
Microsoft .net Framework 4.6.1
1 Github repository
446
VMScore
CVE-2017-0248
Microsoft .NET Framework 2.0, 3.5, 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2 and 4.7 allow an malicious user to bypass Enhanced Security Usage taggings when they present a certificate that is invalid for a specific use, aka ".NET Security Feature Bypass Vulnerability."
Microsoft .net Framework 4.6.2
Microsoft .net Framework 4.7
Microsoft .net Framework 2.0
Microsoft .net Framework 3.5
Microsoft .net Framework 4.6
Microsoft .net Framework 4.6.1
Microsoft .net Framework 3.5.1
Microsoft .net Framework 4.5.2
2 Github repositories
1 Article
383
VMScore
CVE-2015-6096
The XML DTD parser in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1, 4.5.2, and 4.6 allows remote malicious users to read arbitrary files via an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, aka &...
Microsoft .net Framework 4.0
Microsoft .net Framework 4.5
Microsoft .net Framework 4.5.1
Microsoft .net Framework 4.5.2
Microsoft .net Framework 3.5
Microsoft .net Framework 3.5.1
Microsoft .net Framework 2.0
Microsoft .net Framework 4.6
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886
insecure direct object reference
CVE-2024-34342
file inclusion
CVE-2024-34562
CVE-2024-34347
CVE-2024-26026
CVE-2024-4647
unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »