Microsoft .Net
11 CVEs affecting Microsoft .Net. Latest disclosed: 2026-05-12. Critical: 0, High: 10.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-42899 | High | 7.5 | 2026-05-12 | Loop with unreachable exit condition ('infinite loop') in ASP.NET Core allows an unauthorized attacker to deny service over a network. |
CVE-2026-33116 | High | 7.5 | 2026-04-14 | Loop with unreachable exit condition ('infinite loop') in .NET, .NET Framework, Visual Studio allows an unauthorized attacker to deny service over a network. |
CVE-2026-32203 | High | 7.5 | 2026-04-14 | Stack-based buffer overflow in .NET and Visual Studio allows an unauthorized attacker to deny service over a network. |
CVE-2026-32178 | High | 7.5 | 2026-04-14 | Improper neutralization of special elements in .NET allows an unauthorized attacker to perform spoofing over a network. |
CVE-2026-26171 | High | 7.5 | 2026-04-14 | Uncontrolled resource consumption in .NET allows an unauthorized attacker to deny service over a network. |
CVE-2023-44487 | High | 7.5 | 2023-10-10 | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the w… |
CVE-2022-38013 | High | 7.5 | 2022-09-13 | .NET Core and Visual Studio Denial of Service Vulnerability |
CVE-2022-29145 | High | 7.5 | 2022-05-10 | .NET and Visual Studio Denial of Service Vulnerability |
CVE-2022-29117 | High | 7.5 | 2022-05-10 | .NET and Visual Studio Denial of Service Vulnerability |
CVE-2022-24464 | High | 7.5 | 2022-03-09 | .NET and Visual Studio Denial of Service Vulnerability |
CVE-2022-24512 | Medium | 6.3 | 2022-03-09 | .NET and Visual Studio Remote Code Execution Vulnerability |