Stack-based Buffer Overflow in .NET and Visual Studio by Microsoft
CVE-2026-32203

7.5HIGH

Key Information:

Vendor: Microsoft
Status: .net 10.0; .net 8.0; .net 9.0; Microsoft Visual Studio 2022 Version 17.12
Vendor: CVE Published:; 14 April 2026

What is CVE-2026-32203?

A stack-based buffer overflow vulnerability has been identified in .NET and Visual Studio, allowing an unauthorized attacker to potentially cause a denial of service over a network. This occurs when the application fails to adequately validate input data, leading to the possibility of excessive memory usage and instability. Users are advised to apply the necessary patches to mitigate the risk and secure their applications from potential exploitation.

Affected Version(s)

.NET 10.0 10.0.0 < 10.0.6

.NET 8.0 8.0.0 < 8.0.26

.NET 9.0 9.0.0 < 9.0.15

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE...

vendor-advisorypatch

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 14, 2026
Vulnerability Reserved
Mar 11, 2026

CVE-2026-32203 Data

JSON