CVE-2023-36899

HIGH EXPLOITED

ASP.NET - Privilege Escalation

Title source: llm

ASP.NET Elevation of Privilege Vulnerability

nomisec WRITEUP 32 stars

by midisec · remote-auth

nomisec WORKING POC 4 stars

by d0rb · poc

CVSS v3 8.8

EPSS 0.7004

EPSS Percentile 98.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

VulnCheck KEV 2026-03-31

CWE

CWE-20

Status published

Products (8)

microsoft/.net_framework 4.8

microsoft/.net_framework 4.6.2

microsoft/.net_framework 4.7

microsoft/.net_framework 4.7.1

microsoft/.net_framework 4.7.2

microsoft/.net_framework 3.5

microsoft/.net_framework 4.8.1

microsoft/.net_framework 2.0 sp2

Published Aug 08, 2023

Tracked Since Feb 18, 2026