CVE-2022-24512

MEDIUM

Microsoft .NET, PowerShell, and Visual Studio - Remote Code Execution

Title source: manual
STIX 2.1

Description

.NET and Visual Studio Remote Code Execution Vulnerability

References (1)

Core 1
Core References

Scores

CVSS v3 6.3
EPSS 0.0155
EPSS Percentile 72.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-94
Status published
Products (50)
fedoraproject/fedora 34
fedoraproject/fedora 35
fedoraproject/fedora 36
microsoft/.net 5.0
microsoft/.net 6.0.0
Microsoft/.NET 5.0 5.0.0 - 5.0.15
Microsoft/.NET 6.0 6.0.0 - 6.0.3
Microsoft/.NET Core 3.1 3.1 - 3.1.23
microsoft/.net_core 3.1
Microsoft/Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10) 16.11.0 - 16.11.11
... and 40 more
Published Mar 09, 2022
Tracked Since Feb 18, 2026