Vulnerabilities > Microsoft > NET

DATE	CVE	VULNERABILITY TITLE	RISK
2023-11-14	CVE-2023-36049	Unspecified vulnerability in Microsoft .Net and .Net Framework .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability network low complexity microsoft critical	9.8
2023-10-10	CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. network low complexity ietf nghttp2 netty envoyproxy eclipse caddyserver golang f5 apache apple grpc microsoft nodejs dena facebook amazon debian kazu-yamamoto istio varnish-cache-project traefik projectcontour linkerd linecorp redhat fedoraproject netapp akka konghq jenkins openresty cisco	7.5
2023-08-08	CVE-2023-35391	Unspecified vulnerability in Microsoft .Net ASP.NET Core SignalR and Visual Studio Information Disclosure Vulnerability network low complexity microsoft	7.5
2023-06-14	CVE-2023-33135	Unspecified vulnerability in Microsoft .Net and Visual Studio 2022 .NET and Visual Studio Elevation of Privilege Vulnerability local low complexity microsoft	7.3
2022-10-11	CVE-2022-41032	NuGet Client Elevation of Privilege Vulnerability local low complexity microsoft fedoraproject	7.8
2020-09-15	CVE-2020-8927	Classic Buffer Overflow vulnerability in multiple products A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a "one-shot" decompression request to a script can trigger a crash, which happens when copying over chunks of data larger than 2 GiB. network low complexity google debian fedoraproject canonical opensuse microsoft CWE-120	6.5
2020-05-21	CVE-2020-1108	Unspecified vulnerability in Microsoft products A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests, aka '.NET Core & .NET Framework Denial of Service Vulnerability'. network low complexity microsoft	7.5