VDB
GCVE-VVD-NCSC-2025-11
GCVE-VVD-NCSC-2025-11
Advisory PublishedCVSS 7.5/10
Microsoft heeft kwetsbaarheden verholpen in Visual Studio en .NET.
Weaknesses (CWE)
CWE-200Exposure of Sensitive Information to an Unauthorized ActorCWE-122Heap-based Buffer OverflowCWE-379Creation of Temporary File in Directory with Insecure PermissionsCWE-126Buffer Over-readCWE-284Improper Access Control
Risk Scores
CVSS 3.1
7.5/10
High · CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| microsoft | .net_9.0 | — | — |
| microsoft | microsoft_visual_studio_2022_version_17.12 | — | — |
| microsoft | microsoft_visual_studio_2022_version_17.6 | — | — |
| microsoft | microsoft_visual_studio_2022_version_17.8 | — | — |
| microsoft | microsoft_visual_studio_2022_version_17.10 | — | — |
| microsoft | microsoft_visual_studio_2017_version_15.9__includes_15.0_-_15.8_ | — | — |
| microsoft | microsoft_visual_studio_2019_version_16.11__includes_16.0_-_16.10_ | — | — |
| microsoft | .net_8.0 | — | — |
| microsoft | microsoft_.net_framework_3.5_and_4.8.1 | — | — |
| microsoft | microsoft_.net_framework_4.8 | — | — |
| microsoft | microsoft_.net_framework_3.5_and_4.8 | — | — |
| microsoft | microsoft_.net_framework_3.5_and_4.7.2 | — | — |
| microsoft | microsoft_.net_framework_3.5_and_4.6.2_4.7_4.7.1_4.7.2 | — | — |
| microsoft | microsoft_.net_framework_4.6.2_4.7_4.7.1_4.7.2 | — | — |
| microsoft | microsoft_.net_framework_4.6.2 | — | — |
| microsoft | microsoft_.net_framework_4.6_4.6.2 | — | — |
Aliases
Transitive aliases
EUVD-2025-2258CGA-3fp7-hm4p-564pBIT-dotnet-sdk-2025-21172EUVD-2025-0073BIT-dotnet-sdk-2025-21176VVD-CISA-2025-21176GHSA-86c2-4x57-wc8gVVD-CISA-2024-50338BDU:2025-00434GHSA-p54p-p3qm-8vgjEUVD-2025-0075GHSA-mvph-h5j7-4h2gALAS2023-2025-844VVD-CISA-2025-21172CGA-xc2h-7j9h-j56jNCSC-2025-0011BDU:2025-01178GHSA-4f6p-j74c-h2q4BDU:2025-00587VVD-CISA-2025-21405EUVD-2025-2256VVD-CISA-2025-21178ALSA-2025:0382ALSA-2025:0381BELL-CVE-2025-21176WID-SEC-W-2025-0093BIT-dotnet-2025-21171VVD-CISA-2025-21171BDU:2025-00362GHSA-gjf6-3w4p-7xfhEUVD-2025-0069BIT-powershell-2025-21171CGA-4gmf-p5cc-cv9fVVD-CISA-2025-21173BIT-dotnet-2025-21176BIT-dotnet-sdk-2025-21171BIT-dotnet-sdk-2025-21173GHSA-7qvp-9xw6-rpfpCGA-3rfc-x99c-7phwEUVD-2025-2465EUVD-2025-0074BELL-CVE-2025-21172BIT-dotnet-2025-21173BELL-CVE-2025-21173BIT-dotnet-2025-21172GHSA-jjcv-wr2g-4rv4
Browse GCVE Records
100 records in the GCVE database · Updated April 16, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.