VDB
CISA-2023-36873
CISA-2023-36873
PUBLISHED
CVSS 7.4 HIGH
Reported by microsoft · Published August 8, 2023
.NET Framework Spoofing Vulnerability
Risk Scores
CVSS 3.1
7.4
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Microsoft .NET Framework 4.8 | 4.8.0 |
| Microsoft | Microsoft .NET Framework 3.5 AND 4.8 | 4.8.0 |
| Microsoft | Microsoft .NET Framework 3.5 AND 4.7.2 | 4.7.0 |
| Microsoft | Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 | 3.0.0.0 |
| Microsoft | Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 | 4.7.0 |
| Microsoft | Microsoft .NET Framework 3.5 AND 4.8.1 | 4.8.1 |
| Microsoft | Microsoft .NET Framework 4.6.2 | 4.7.0 |
| Microsoft | Microsoft .NET Framework 3.5 and 4.6.2 | 4.7.0 |
| Microsoft | Microsoft .NET Framework 3.5 and 4.6.2 | 4.7.0, 4.7.0 |
| Microsoft | Microsoft .NET Framework 3.5 AND 4.7.2 | 4.7.0, 4.7.0 |
| microsoft | .net_framework | 3.0.0.0, 3.0.0.0 |
| Microsoft | Microsoft .NET Framework 4.6.2 | 4.7.0, 4.7.0 |
| Microsoft | Microsoft .NET Framework 4.8 | 4.8.0, 4.8.0 |
| Microsoft | Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 | 4.7.0, 4.7.0 |
| Microsoft | Microsoft .NET Framework 3.5 AND 4.8 | 4.8.0, 4.8.0 |
| Microsoft | Microsoft .NET Framework 3.5 AND 4.8.1 | 4.8.1, 4.8.1 |
| Microsoft | Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2 | 3.0.0.0, 3.0.0.0 |
| microsoft | .net | 4.7.0, 4.7.0, 4.8.1 |
Timeline
- Aug 8, 2023 CVE Published
- Jan 1, 2025 CVE Updated
- Apr 26, 2026 Security Advisory
References
- .NET Framework Spoofing Vulnerability vendor-advisory