Denial of Service Vulnerability in .NET by Microsoft
CVE-2026-50651

7.5HIGH

What is CVE-2026-50651?

A vulnerability exists in .NET that allows unauthorized attackers to exhaust network resources, leading to denial of service conditions. This flaw enables malicious actors to manipulate resource allocation without controls or throttling, potentially disrupting normal operations of affected systems and applications. It is crucial for users of the affected .NET versions to implement the latest patches and security measures to mitigate potential threats.

Affected Version(s)

.NET 10.0 10.0.0 < 10.0.6

.NET 8.0 8.0.0 < 8.0.29

.NET 9.0 9.0.0 < 9.0.18

References

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.