Authorization Bypass Vulnerability in .NET Framework by Microsoft
CVE-2026-50528

8.2HIGH

What is CVE-2026-50528?

A security flaw in .NET Framework enables unauthorized attackers to bypass critical security features over a network, potentially exposing sensitive data and actions. This vulnerability highlights the importance of timely security patches and vigilant system monitoring. Users are encouraged to update their systems following Microsoft's guidance to mitigate the risk.

Affected Version(s)

.NET 10.0 10.0.0 < 10.0.6

.NET 8.0 8.0.0 < 8.0.29

.NET 9.0 9.0.0 < 9.0.18

References

CVSS V3.1

Score:
8.2
Severity:
HIGH
Confidentiality:
Low
Integrity:
High
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.