Vulnerabilities > Microsoft > NET Framework
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-07-15 | CVE-2019-1113 | Improper Input Validation vulnerability in Microsoft .Net Framework and Visual Studio 2017 A remote code execution vulnerability exists in .NET software when the software fails to check the source markup of a file.An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user, aka '.NET Framework Remote Code Execution Vulnerability'. | 6.8 |
| 2019-07-15 | CVE-2019-1083 | Data Processing Errors vulnerability in Microsoft .Net Framework A denial of service vulnerability exists when Microsoft Common Object Runtime Library improperly handles web requests, aka '.NET Denial of Service Vulnerability'. | 5.0 |
| 2019-07-15 | CVE-2019-1006 | Improper Certificate Validation vulnerability in Microsoft products An authentication bypass vulnerability exists in Windows Communication Foundation (WCF) and Windows Identity Foundation (WIF), allowing signing of SAML tokens with arbitrary symmetric keys, aka 'WCF/WIF SAML Token Authentication Bypass Vulnerability'. | 5.0 |
| 2019-05-16 | CVE-2019-0981 | Data Processing Errors vulnerability in Microsoft .Net Core and .Net Framework A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and .Net Core Denial of Service Vulnerability'. | 5.0 |
| 2019-05-16 | CVE-2019-0980 | Data Processing Errors vulnerability in Microsoft .Net Core and .Net Framework A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and .Net Core Denial of Service Vulnerability'. | 5.0 |
| 2019-05-16 | CVE-2019-0864 | Unspecified vulnerability in Microsoft .Net Framework A denial of service vulnerability exists when .NET Framework improperly handles objects in heap memory, aka '.NET Framework Denial of Service Vulnerability'. | 2.1 |
| 2019-05-16 | CVE-2019-0820 | Resource Exhaustion vulnerability in multiple products A denial of service vulnerability exists when .NET Framework and .NET Core improperly process RegEx strings, aka '.NET Framework and .NET Core Denial of Service Vulnerability'. | 7.5 |
| 2019-05-14 | CVE-2019-11397 | Path Traversal vulnerability in multiple products GetFile.aspx in Rapid4 RapidFlows Enterprise Application Builder 4.5M.23 (when used with .NET Framework 4.5) allows Local File Inclusion via the FileDesc parameter. | 6.5 |
| 2019-03-05 | CVE-2019-0657 | Improper Input Validation vulnerability in Microsoft products A vulnerability exists in certain .Net Framework API's and Visual Studio in the way they parse URL's, aka '.NET Framework and Visual Studio Spoofing Vulnerability'. | 4.3 |
| 2019-03-05 | CVE-2019-0613 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Microsoft .Net Framework and Visual Studio 2017 A remote code execution vulnerability exists in .NET Framework and Visual Studio software when the software fails to check the source markup of a file.An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user, aka '.NET Framework and Visual Studio Remote Code Execution Vulnerability'. | 9.3 |