.NET Core and Visual Studio Denial of Service Vulnerability
CVE-2021-26423

7.5HIGH

Key Information:

Vendor: Microsoft
Status: Microsoft Visual Studio 2017 Version 15.9 (includes 15.0 - 15.8); Microsoft Visual Studio 2019 Version 16.4 (includes 16.0 - 16.3); Microsoft Visual Studio 2019 Version 16.7 (includes 16.0 – 16.6); Microsoft Visual Studio 2019 Version 16.9 (includes 16.0 - 16.8)
Vendor: CVE Published:; 12 August 2021

Summary

.NET Core and Visual Studio Denial of Service Vulnerability

Affected Version(s)

.NET 5.0 Unknown 5.0.0 < 5.0.9

.NET Core 2.1 Unknown 2.1 < 2.1.30

.NET Core 3.1 Unknown 3.1 < 3.1.18

References

https://portal.msrc.microsoft.com/en-US/security-guidance...

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 12, 2021
Vulnerability Reserved
Jan 29, 2021

.