CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
EPSS
Percentile
21.7%
.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability
Vendor | Product | Version | CPE |
---|---|---|---|
microsoft | .net_framework | 4.6.2 | cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:* |
microsoft | .net_framework | 4.7 | cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:* |
microsoft | .net_framework | 4.7.1 | cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:* |
microsoft | .net_framework | 4.7.2 | cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:* |
microsoft | windows_server_2008 | r2 | cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:* |
microsoft | windows_server_2012 | - | cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:* |
microsoft | windows_server_2012 | r2 | cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:* |
microsoft | .net_framework | 3.5 | cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:* |
microsoft | .net_framework | 4.8 | cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:* |
microsoft | windows_10_1607 | * | cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:* |