Lucene search

Ubuntu.comUB:CVE-2023-24897

HistoryJun 14, 2023 - 12:00 a.m.

CVE-2023-24897

2023-06-1400:00:00

ubuntu.com

remote code execution

.net

windows

visual studio

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

0.002 Low

EPSS

Percentile

58.9%

JSON

.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

Notes

Author	Note
iconstantin	Windows specific issue.

References

github.com/dotnet/announcements/issues/260

github.com/dotnet/runtime/issues/87501

launchpad.net/bugs/cve/CVE-2023-24897

msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24897

nvd.nist.gov/vuln/detail/CVE-2023-24897

security-tracker.debian.org/tracker/CVE-2023-24897

www.cve.org/CVERecord?id=CVE-2023-24897

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

0.002 Low

EPSS

Percentile

58.9%

JSON

Related for UB:CVE-2023-24897