CVE-2024-21409

HIGH

.NET Framework and .NET 6.0.0-6.0.28 - Remote Code Execution via Use-After-Free

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-21409. PoCs published by vkairy.

AI-analyzed exploit summary This repository contains a functional proof-of-concept for CVE-2024-21409, demonstrating a validation bypass vulnerability in NJsonSchema. The PoC shows how invalid JSON data with additional properties or incorrect types can incorrectly pass validation.

Description

.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

Exploits (1)

nomisec WORKING POC 1 stars
by vkairy · poc
https://github.com/vkairy/cve-2024-21409-repro

This repository contains a functional proof-of-concept for CVE-2024-21409, demonstrating a validation bypass vulnerability in NJsonSchema. The PoC shows how invalid JSON data with additional properties or incorrect types can incorrectly pass validation.

Classification
Working Poc 90%
Attack Type
Other
Complexity
Trivial
Reliability
Reliable
Target: NJsonSchema (version not specified)
No auth needed
Prerequisites: NJsonSchema library installed
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2

Scores

CVSS v3 7.3
EPSS 0.5762
EPSS Percentile 98.2%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-416
Status published
Products (13)
microsoft/.net 6.0.0 - 6.0.29
microsoft/.net_framework 3.5 (2 CPE variants)
microsoft/.net_framework 4.8.1
microsoft/.net_framework 4.7.2
microsoft/.net_framework 4.8
microsoft/.net_framework 4.6.2
microsoft/.net_framework 4.7
microsoft/.net_framework 4.7.1
microsoft/powershell 7.2 - 7.2.19
microsoft/visual_studio_2022 17.4.0 - 17.4.18
... and 3 more
Published Apr 09, 2024
Tracked Since Feb 18, 2026