.NET Framework Remote Code Execution Vulnerability - CVE-2023-24897| ID: oval:org.secpod.oval:def:90397 | Date: (C)2023-06-15 (M)2024-03-07 |
| Class: VULNERABILITY | Family: windows |
.NET Framework Remote Code Execution Vulnerability. This type of exploit is sometimes referred to as Arbitrary Code Execution (ACE). The attack itself is carried out locally. In order to exploit this vulnerability, an attacker convinces a victim to download and open a specially crafted file from a website which leads to a local attack on their computer.
| Platform: |
| Microsoft Windows 10 |
| Microsoft Windows Server 2008 |
| Microsoft Windows Server 2008 R2 |
| Microsoft Windows Server 2012 |
| Microsoft Windows Server 2012 R2 |
| Microsoft Windows Server 2016 |
| Microsoft Windows Server 2019 |
| Microsoft Windows 11 |
| Microsoft Windows Server 2022 |
| Product: |
| Microsoft .NET Framework 3.5 |
| Microsoft .NET Framework 3.5.1 |
| Microsoft .NET Framework 4.6.2 |
| Microsoft .NET Framework 4.7 |
| Microsoft .NET Framework 4.7.1 |
| Microsoft .NET Framework 4.7.2 |
| Microsoft .NET Framework 4.8 |
| Microsoft .NET Framework 4.8.1 |
| Microsoft .NET core runtime 6.0 |
| Microsoft .NET core runtime 7.0 |
| Microsoft Visual Studio 2013 |
| Microsoft Visual Studio 2015 |
| Microsoft Visual Studio 2017 |
| Microsoft Visual Studio 2019 |
| Microsoft Visual Studio 2022 |
