Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMicrosoftCVELIST:CVE-2021-24111
HistoryFeb 25, 2021 - 11:01 p.m.

CVE-2021-24111 .NET Framework Denial of Service Vulnerability

2021-02-2523:01:57
microsoft
www.cve.org

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C

7.8 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

57.0%

JSON

CNA Affected

[
  {
    "vendor": "Microsoft",
    "product": "Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2",
    "cpes": [
      "cpe:2.3:a:microsoft:.net_framework:4.6:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Windows Server 2012",
      "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)",
      "Windows Server 2008 R2 for x64-based Systems Service Pack 1",
      "Windows 8.1 for x64-based systems",
      "Windows Server 2012 R2",
      "Windows 7 for 32-bit Systems Service Pack 1",
      "Windows 7 for x64-based Systems Service Pack 1",
      "Windows Server 2012 R2 (Server Core installation)",
      "Windows Server 2012 (Server Core installation)",
      "Windows 8.1 for 32-bit systems",
      "Windows RT 8.1"
    ],
    "versions": [
      {
        "version": "4.0.0.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft .NET Framework 4.8",
    "cpes": [
      "cpe:2.3:a:microsoft:.net:4.8:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Windows 10 Version 1809 for 32-bit Systems",
      "Windows 10 Version 1803 for 32-bit Systems",
      "Windows 10 Version 1803 for x64-based Systems",
      "Windows 10 Version 1809 for x64-based Systems",
      "Windows Server 2016 (Server Core installation)",
      "Windows 10 Version 1607 for 32-bit Systems",
      "Windows 7 for 32-bit Systems Service Pack 1",
      "Windows 8.1 for 32-bit systems",
      "Windows 10 Version 1607 for x64-based Systems",
      "Windows 7 for x64-based Systems Service Pack 1",
      "Windows Server 2008 R2 for x64-based Systems Service Pack 1",
      "Windows 8.1 for x64-based systems",
      "Windows Server 2012",
      "Windows Server 2016",
      "Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)",
      "Windows RT 8.1",
      "Windows Server 2012 R2",
      "Windows Server 2012 (Server Core installation)",
      "Windows 10 Version 20H2 for 32-bit Systems",
      "Windows Server, version 2004 (Server Core installation)",
      "Windows 10 Version 2004 for x64-based Systems",
      "Windows Server, version 20H2 (Server Core Installation)",
      "Windows 10 Version 20H2 for ARM64-based Systems",
      "Windows 10 Version 2004 for ARM64-based Systems",
      "Windows 10 Version 2004 for 32-bit Systems",
      "Windows Server 2019 (Server Core installation)",
      "Windows Server 2019",
      "Windows 10 Version 1909 for x64-based Systems",
      "Windows Server, version 1909 (Server Core installation)",
      "Windows 10 Version 1909 for ARM64-based Systems",
      "Windows 10 Version 1909 for 32-bit Systems",
      "Windows Server 2012 R2 (Server Core installation)"
    ],
    "versions": [
      {
        "version": "4.8.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft .NET Framework 4.6",
    "cpes": [
      "cpe:2.3:a:microsoft:.net_framework:4.6:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Windows Server 2008 for 32-bit Systems Service Pack 2",
      "Windows Server 2008 for x64-based Systems Service Pack 2"
    ],
    "versions": [
      {
        "version": "4.0.0.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2",
    "cpes": [
      "cpe:2.3:a:microsoft:.net:4.7.2:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Windows 10 Version 1607 for 32-bit Systems",
      "Windows Server 2016 (Server Core installation)",
      "Windows 10 Version 1607 for x64-based Systems",
      "Windows Server 2016"
    ],
    "versions": [
      {
        "version": "4.7.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft .NET Framework 4.7.2",
    "cpes": [
      "cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Windows 10 Version 1803 for x64-based Systems",
      "Windows Server 2019 (Server Core installation)",
      "Windows Server 2019",
      "Windows 10 Version 1803 for 32-bit Systems",
      "Windows 10 Version 1803 for ARM64-based Systems"
    ],
    "versions": [
      {
        "version": "10.0.0.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  }
]

Related

cve 1
nessus 3
mskb 16
openvas 8
nvd 1
redhatcve 1
mscve 1
prion 1
kaspersky 1
rapid7blog 1
cve
cve
CVE-2021-24111
2021-02-25 23:15:16
nessus
nessus
Security Updates for Microsoft .NET Framework (February 2021)
2022-12-05 00:00:00
KB4601318: Windows 10 Version 1607 and Windows Server 2016 February 2021 Security Update
2021-02-09 00:00:00
KB4601354: Windows 10 Version 1803 February 2021 Security Update
2021-02-09 00:00:00
mskb
mskb
February 9, 2021-KB4601052 Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1703
2000-01-01 00:00:00
February 9, 2021-KB4601056 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10, version 1909, and Windows Server, version 1909
2021-02-09 08:00:00
Security Only Update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows 8.1 and Windows Server 2012 R2 (KB4602960)
2021-02-09 08:00:00
openvas
openvas
Microsoft .NET Framework Denial of Service Vulnerability (KB4601887)
2021-02-10 00:00:00
Microsoft .NET Framework Denial of Service Vulnerability (KB4601054)
2021-02-10 00:00:00
Microsoft .NET Framework Denial of Service Vulnerability (KB4601051)
2021-02-10 00:00:00
nvd
nvd
CVE-2021-24111
2021-02-25 23:15:16
redhatcve
redhatcve
CVE-2021-24111
2021-03-01 16:03:32
mscve
mscve
.NET Framework Denial of Service Vulnerability
2021-02-09 08:00:00
prion
prion
Denial of service
2021-02-25 23:15:00
kaspersky
kaspersky
KLA12073 Multiple vulnerabilities in Microsoft Developer Tools
2021-02-09 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - February 2021
2021-02-09 23:51:27

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C

7.8 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

57.0%

JSON
Related for CVELIST:CVE-2021-24111
cve1nessus3mskb16openvas8nvd1redhatcve1mscve1prion1kaspersky1rapid7blog1