Microsoft .NET Framework Information Disclosure Vulnerability
Key Information
- Vendor
- Microsoft
- Status
- Microsoft .net Framework 4.8
- Microsoft .net Framework 3.5 And 4.8
- Microsoft .net Framework 3.5 And 4.7.2
- Microsoft .net Framework 4.6.2/4.7/4.7.1/4.7.2
- Vendor
- CVE Published:
- 23 March 2024
Badges
Summary
A vulnerability in Microsoft .NET Framework, identified as CVE-2024-29059, allows malicious users to obtain sensitive information. This vulnerability affects multiple versions of the .NET Framework, and a high severity rating has been assigned to it. Although there are no known exploits in the wild, affected users are advised to install necessary updates from the KB section listed in Windows Update as a solution to mitigate the risk.
Affected Version(s)
Microsoft .NET Framework 4.8 < 4.8.04690.02
Microsoft .NET Framework 4.8 < 4.8.04690.01
Microsoft .NET Framework 3.5 AND 4.8 < 4.8.04690.02
News Articles
Pentest-Tools.com CVE-2024-29059.NET Framework - Leaking ObjRefs via HTTP .NET Remoting (CVE-2024-29059)
.NET Framework Information Disclosure Vulnerability.
6 months ago
www.shockwave.cloud CVE-2024-29059Shockwave | Attack Surface & Continuous Threat Exposure Management, Simplified - Shockwave Attack Surface Management - CVE-2024-29059 .NET Remote Code Execution
Shockwave is a leading platform in Attack Surface and Continuous Threat Exposure Management, offering solutions for EASM, CTEM, SaaS, third-party risk, cloud misconfigurations, and dynamic web scanning. Our industry-leading technology enables organizations to detect vulnerabilities, manage risks, an...
6 months ago
Kaspersky Threats CVE-2024-29059Kaspersky Threats — KLA65276
Kaspersky Threats — KLA65276 OSI vulnerability in Microsoft Developer Tools
6 months ago
CVSS V3.1
Timeline
- 👾
Exploit exists.
First article discovered by Kaspersky Threats
Vulnerability published.