ByteOS Network

Vulnerability Details :

CVE-2021-24111

Summary

Assigner-microsoft

Assigner Org ID-f38d906d-7342-40ea-92c1-6c4a2c6478c8

Published At-25 Feb, 2021 | 23:01

Updated At-03 Aug, 2024 | 19:21

.NET Framework Denial of Service Vulnerability

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:microsoft

Assigner Org ID:f38d906d-7342-40ea-92c1-6c4a2c6478c8

Published At:25 Feb, 2021 | 23:01

Updated At:03 Aug, 2024 | 19:21

▼CVE Numbering Authority (CNA)

.NET Framework Denial of Service Vulnerability

Affected Products

Vendor

Microsoft Corporation

Product

Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2

CPEs

cpe:2.3:a:microsoft:.net_framework:4.6:*:*:*:*:*:*:*

Platforms

Windows Server 2012
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows 8.1 for x64-based systems
Windows Server 2012 R2
Windows 7 for 32-bit Systems Service Pack 1
Windows 7 for x64-based Systems Service Pack 1
Windows Server 2012 R2 (Server Core installation)
Windows Server 2012 (Server Core installation)
Windows 8.1 for 32-bit systems
Windows RT 8.1

Versions

Affected

From 4.0.0.0 before publication (custom)

Vendor

Microsoft Corporation

Product

Microsoft .NET Framework 4.8

CPEs

cpe:2.3:a:microsoft:.net:4.8:*:*:*:*:*:*:*

Platforms

Windows 10 Version 1809 for 32-bit Systems
Windows 10 Version 1803 for 32-bit Systems
Windows 10 Version 1803 for x64-based Systems
Windows 10 Version 1809 for x64-based Systems
Windows Server 2016 (Server Core installation)
Windows 10 Version 1607 for 32-bit Systems
Windows 7 for 32-bit Systems Service Pack 1
Windows 8.1 for 32-bit systems
Windows 10 Version 1607 for x64-based Systems
Windows 7 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows 8.1 for x64-based systems
Windows Server 2012
Windows Server 2016
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
Windows RT 8.1
Windows Server 2012 R2
Windows Server 2012 (Server Core installation)
Windows 10 Version 20H2 for 32-bit Systems
Windows Server, version 2004 (Server Core installation)
Windows 10 Version 2004 for x64-based Systems
Windows Server, version 20H2 (Server Core Installation)
Windows 10 Version 20H2 for ARM64-based Systems
Windows 10 Version 2004 for ARM64-based Systems
Windows 10 Version 2004 for 32-bit Systems
Windows Server 2019 (Server Core installation)
Windows Server 2019
Windows 10 Version 1909 for x64-based Systems
Windows Server, version 1909 (Server Core installation)
Windows 10 Version 1909 for ARM64-based Systems
Windows 10 Version 1909 for 32-bit Systems
Windows Server 2012 R2 (Server Core installation)

Versions

Affected

From 4.8.0 before publication (custom)

Vendor

Microsoft Corporation

Product

Microsoft .NET Framework 4.6

CPEs

cpe:2.3:a:microsoft:.net_framework:4.6:*:*:*:*:*:*:*

Platforms

Windows Server 2008 for 32-bit Systems Service Pack 2
Windows Server 2008 for x64-based Systems Service Pack 2

Versions

Affected

From 4.0.0.0 before publication (custom)

Vendor

Microsoft Corporation

Product

Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2

CPEs

cpe:2.3:a:microsoft:.net:4.7.2:*:*:*:*:*:*:*

Platforms

Windows 10 Version 1607 for 32-bit Systems
Windows Server 2016 (Server Core installation)
Windows 10 Version 1607 for x64-based Systems
Windows Server 2016

Versions

Affected

From 4.7.0 before publication (custom)

Vendor

Microsoft Corporation

Product

Microsoft .NET Framework 4.7.2

CPEs

cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*

Platforms

Windows 10 Version 1803 for x64-based Systems
Windows Server 2019 (Server Core installation)
Windows Server 2019
Windows 10 Version 1803 for 32-bit Systems
Windows 10 Version 1803 for ARM64-based Systems

Versions

Affected

From 10.0.0.0 before publication (custom)

Problem Types

Type	CWE ID	Description
Impact	N/A	Denial of Service

Type: Impact

CWE ID: N/A

Description: Denial of Service

Metrics

Version	Base score	Base severity	Vector
3.1	7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C

Version: 3.1

Base score: 7.5

Base severity: HIGH

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C

References

Hyperlink	Resource
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-24111	x_refsource_MISC

Hyperlink: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-24111

Resource:

x_refsource_MISC

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-24111	x_refsource_MISC x_transferred

Hyperlink: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-24111

Resource:

x_refsource_MISC

x_transferred

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:secure@microsoft.com

Published At:25 Feb, 2021 | 23:15

Updated At:29 Dec, 2023 | 17:15

.NET Framework Denial of Service Vulnerability

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Secondary	3.1	7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Primary	2.0	5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:N/A:P