Microsoft Microsoft .Net Framework 4.8
37 CVEs affecting Microsoft Microsoft .Net Framework 4.8. Latest disclosed: 2026-05-12. Critical: 1, High: 30.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-0057 | Critical | 9.1 | 2024-01-09 | NET, .NET Framework, and Visual Studio Security Feature Bypass Vulnerability |
CVE-2025-21176 | High | 8.8 | 2025-01-14 | .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability |
CVE-2023-36560 | High | 8.8 | 2023-11-14 | ASP.NET Security Feature Bypass Vulnerability |
CVE-2023-36899 | High | 8.8 | 2023-08-08 | ASP.NET Elevation of Privilege Vulnerability |
CVE-2024-0056 | High | 8.7 | 2024-01-09 | Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability |
CVE-2023-36792 | High | 7.8 | 2023-09-12 | Visual Studio Remote Code Execution Vulnerability |
CVE-2023-36793 | High | 7.8 | 2023-09-12 | Visual Studio Remote Code Execution Vulnerability |
CVE-2023-36794 | High | 7.8 | 2023-09-12 | Visual Studio Remote Code Execution Vulnerability |
CVE-2023-36796 | High | 7.8 | 2023-09-12 | Visual Studio Remote Code Execution Vulnerability |
CVE-2023-24895 | High | 7.8 | 2023-06-14 | .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability |
CVE-2023-24897 | High | 7.8 | 2023-06-14 | .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability |
CVE-2023-21808 | High | 7.8 | 2023-02-14 | .NET and Visual Studio Remote Code Execution Vulnerability |
CVE-2022-41089 | High | 7.8 | 2022-12-13 | .NET Framework Remote Code Execution Vulnerability |
CVE-2023-36049 | High | 7.6 | 2023-11-14 | .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability |
CVE-2026-33116 | High | 7.5 | 2026-04-14 | Loop with unreachable exit condition ('infinite loop') in .NET, .NET Framework, Visual Studio allows an unauthorized attacker to deny service over a network. |
CVE-2026-23666 | High | 7.5 | 2026-04-14 | Improper input validation in .NET Framework allows an unauthorized attacker to deny service over a network. |
CVE-2024-43484 | High | 7.5 | 2024-10-08 | .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability |
CVE-2024-43483 | High | 7.5 | 2024-10-08 | .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability |
CVE-2024-29059 | High | 7.5 | 2024-03-22 | .NET Framework Information Disclosure Vulnerability |
CVE-2024-21312 | High | 7.5 | 2024-01-09 | .NET Framework Denial of Service Vulnerability |