CVE-2024-29059

HIGH KEV NUCLEI

.NET Framework - Leaking ObjRefs via HTTP .NET Remoting

Title source: nuclei

Exploitation Summary

CVE-2024-29059 is actively exploited and listed in the CISA Known Exploited Vulnerabilities (KEV) catalog, added February 4, 2025. EIP tracks 1 public exploit from researchers including codewhitesec. A Nuclei detection template is also available.

AI-analyzed exploit summary This repository provides a proof-of-concept exploit for CVE-2024-29059, which involves leaking `ObjRef` objects via HTTP .NET Remoting and exploiting deserialization vulnerabilities under `TypeFilterLevel.Low` restrictions. It includes a vulnerable ASP.NET application setup guide, detection methods for `ObjRef` leaks, example payloads, and an exploit script for delivering payloads.

Description

.NET Framework Information Disclosure Vulnerability

Exploits (1)

nomisec WORKING POC 92 stars

by codewhitesec · infoleak

https://github.com/codewhitesec/HttpRemotingObjRefLeak

View Code ZIP pw:eip

This repository provides a proof-of-concept exploit for CVE-2024-29059, which involves leaking `ObjRef` objects via HTTP .NET Remoting and exploiting deserialization vulnerabilities under `TypeFilterLevel.Low` restrictions. It includes a vulnerable ASP.NET application setup guide, detection methods for `ObjRef` leaks, example payloads, and an exploit script for delivering payloads.

Classification

Working Poc 95%

Attack Type

Deserialization

Complexity

Moderate

Reliability

Reliable

Target: ASP.NET applications using .NET Remoting with .NET Framework 4.5.2

No auth needed

Prerequisites: Vulnerable ASP.NET application with .NET Remoting enabled · Access to the target application's endpoint

MITRE ATT&CK

T1189 - Drive-by Compromise T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

.NET Framework - Leaking ObjRefs via HTTP .NET Remoting

HIGHby iamnoooob,rootxharsh,DhiyaneshDk,pdresearch

Shodan: Server: MS .NET Remoting || server: ms .net remoting

References (2)

Core 2

Core References

US Government Resource

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-29059

Vendor Advisory vendor-advisory

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059

Scores

CVSS v3 7.5

EPSS 0.9883

EPSS Percentile 99.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation active

Automatable yes

Technical Impact partial

Details

CISA KEV 2025-02-04

VulnCheck KEV 2024-04-27

ENISA EUVD EUVD-2024-26106

CWE

CWE-209

Status published

Products (11)

microsoft/.net_framework 3.5

microsoft/.net_framework 4.7.2

microsoft/.net_framework 4.8

microsoft/.net_framework 3.5.1

microsoft/.net_framework 2.0 sp2

microsoft/.net_framework 3.0 sp2

microsoft/.net_framework 4.6

microsoft/.net_framework 4.6.2

microsoft/.net_framework 4.8.1

microsoft/.net_framework 4.7

... and 1 more

Published Mar 23, 2024

KEV Added Feb 04, 2025

Tracked Since Feb 18, 2026