VDB

CISA-2023-36873

CISA-2023-36873 PUBLISHED CVSS 7.4 HIGH

Reported by microsoft · Published August 8, 2023

.NET Framework Spoofing Vulnerability

Risk Scores

CVSS 3.1
7.4
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C

Affected Products

VendorProductVersions
MicrosoftMicrosoft .NET Framework 4.84.8.0
MicrosoftMicrosoft .NET Framework 3.5 AND 4.84.8.0
MicrosoftMicrosoft .NET Framework 3.5 AND 4.7.24.7.0
MicrosoftMicrosoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.23.0.0.0
MicrosoftMicrosoft .NET Framework 4.6.2/4.7/4.7.1/4.7.24.7.0
MicrosoftMicrosoft .NET Framework 3.5 AND 4.8.14.8.1
MicrosoftMicrosoft .NET Framework 4.6.24.7.0
MicrosoftMicrosoft .NET Framework 3.5 and 4.6.24.7.0
MicrosoftMicrosoft .NET Framework 3.5 and 4.6.24.7.0, 4.7.0
MicrosoftMicrosoft .NET Framework 3.5 AND 4.7.24.7.0, 4.7.0
microsoft.net_framework3.0.0.0, 3.0.0.0
MicrosoftMicrosoft .NET Framework 4.6.24.7.0, 4.7.0
MicrosoftMicrosoft .NET Framework 4.84.8.0, 4.8.0
MicrosoftMicrosoft .NET Framework 4.6.2/4.7/4.7.1/4.7.24.7.0, 4.7.0
MicrosoftMicrosoft .NET Framework 3.5 AND 4.84.8.0, 4.8.0
MicrosoftMicrosoft .NET Framework 3.5 AND 4.8.14.8.1, 4.8.1
MicrosoftMicrosoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.23.0.0.0, 3.0.0.0
microsoft.net4.7.0, 4.7.0, 4.8.1

Timeline

  • Aug 8, 2023 CVE Published
  • Jan 1, 2025 CVE Updated
  • Apr 26, 2026 Security Advisory

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›