VDB

CISA-2023-21808

CISA-2023-21808 PUBLISHED CVSS 7.8 HIGH

Reported by microsoft · Published February 14, 2023

.NET and Visual Studio Remote Code Execution Vulnerability

Risk Scores

CVSS 3.1
7.8
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Affected Products

VendorProductVersions
MicrosoftMicrosoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)16.11.0
MicrosoftMicrosoft Visual Studio 2022 version 17.017.0.0
MicrosoftMicrosoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)15.9.0
MicrosoftMicrosoft Visual Studio 2022 version 17.417.4.0
MicrosoftMicrosoft Visual Studio 2022 version 17.217.2.0
MicrosoftMicrosoft Visual Studio 2015 Update 314.0.0
MicrosoftMicrosoft Visual Studio 2013 Update 512.0.0
Microsoft.NET 7.07.0.0
Microsoft.NET 6.06.0.0
MicrosoftPowerShell 7.27.2.0
MicrosoftMicrosoft .NET Framework 3.5 AND 4.84.8.0
MicrosoftMicrosoft .NET Framework 3.5 AND 4.7.24.7.0
MicrosoftMicrosoft .NET Framework 4.6.2/4.7/4.7.1/4.7.24.7.0
MicrosoftMicrosoft .NET Framework 4.84.8.0
MicrosoftMicrosoft .NET Framework 3.5 AND 4.8.14.8.1
MicrosoftMicrosoft .NET Framework 4.6.24.7.0
MicrosoftMicrosoft .NET Framework 3.5 and 4.6.24.7.0
microsoft.net7.0.0, 6.0.0, 4.7.0
MicrosoftMicrosoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)16.11.0, 16.11.0
microsoftvisual_studio_201715.9.0, 15.9.0

…and 20 more

Timeline

  • Feb 14, 2023 CVE Published
  • Feb 28, 2025 CVE Updated
  • Apr 26, 2026 Security Advisory
Open in Interactive Console →
$ Console Community · 100/wk Open console ›