Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools

visual_studio_2026

Source -

NVD

CNA CVEs -

0

ADP CVEs -

0

CISA CVEs -

0

NVD CVEs -

4
Related CVEsRelated VendorsRelated AssignersReports
4Vulnerabilities found
CVE-2026-45591
Assigner-Microsoft Corporation
ShareView Details
Assigner-Microsoft Corporation
CVSS Score-7.5||HIGH
EPSS-0.75% / 50.07%
||
7 Day CHG-0.02%
Published-09 Jun, 2026 | 17:05
Updated-23 Jun, 2026 | 17:44
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
ASP.NET Core Denial of Service Vulnerability

Uncontrolled resource consumption in ASP.NET Core allows an unauthorized attacker to deny service over a network.

Action-Not Available
Vendor-Linux Kernel Organization, IncMicrosoft CorporationApple Inc.
Product-windowslinux_kernel.netasp.net_coremacosvisual_studio_2026Microsoft Visual Studio 2026 version 18.6ASP.NET Core 8.0.NET 10.0ASP.NET Core 9.0ASP.NET Core 10.0.NET 8.0.NET 9.0
CWE ID-CWE-400
Uncontrolled Resource Consumption
CVE-2026-32175
Assigner-Microsoft Corporation
ShareView Details
Assigner-Microsoft Corporation
CVSS Score-4.3||MEDIUM
EPSS-0.71% / 48.68%
||
7 Day CHG~0.00%
Published-12 May, 2026 | 16:59
Updated-19 Jun, 2026 | 16:12
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
.NET Core Tampering Vulnerability

A tampering vulnerability exists when .NET Core improperly handles specially crafted files. An attacker who successfully exploited this vulnerability could write arbitrary files and directories to certain locations on a vulnerable system. However, an attacker would have limited control over the destination of the files and directories. To exploit the vulnerability, an attacker must send a specially crafted file to a vulnerable system. The security update fixes the vulnerability by ensuring .NET Core properly handles files.

Action-Not Available
Vendor-Microsoft Corporation
Product-.netvisual_studio_2026visual_studio_2022windows.NET 10.0Microsoft Visual Studio 2022 version 17.14.NET 8.0Microsoft Visual Studio 2026 version 18.5.NET 9.0Microsoft Visual Studio 2022 version 17.12
CWE ID-CWE-36
Absolute Path Traversal
CWE ID-CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CVE-2026-32177
Assigner-Microsoft Corporation
ShareView Details
Assigner-Microsoft Corporation
CVSS Score-7.3||HIGH
EPSS-0.42% / 33.07%
||
7 Day CHG-0.01%
Published-12 May, 2026 | 16:58
Updated-19 Jun, 2026 | 16:13
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
.NET Elevation of Privilege Vulnerability

Heap-based buffer overflow in .NET allows an unauthorized attacker to elevate privileges locally.

Action-Not Available
Vendor-Microsoft Corporation
Product-.net_frameworkwindows_11_22h2windows_11_23h2visual_studio_2026windows_10_1809windowswindows_10_1607visual_studio_2022windows_server_2025windows_10_21h2windows_server_2012windows_server_2016.netwindows_server_2022windows_10_22h2windows_11_25h2windows_11_24h2windows_11_26h1windows_server_2019Microsoft .NET Framework 3.5 AND 4.8.1.NET 10.0Microsoft .NET Framework 3.5Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2Microsoft Visual Studio 2022 version 17.14Microsoft .NET Framework 3.5 AND 4.8.NET 8.0Microsoft Visual Studio 2026 version 18.5.NET 9.0Microsoft .NET Framework 4.8Microsoft .NET Framework 3.5 AND 4.7.2Microsoft Visual Studio 2022 version 17.12
CWE ID-CWE-122
Heap-based Buffer Overflow
CWE ID-CWE-20
Improper Input Validation
CWE ID-CWE-787
Out-of-bounds Write
CVE-2026-32203
Assigner-Microsoft Corporation
ShareView Details
Assigner-Microsoft Corporation
CVSS Score-7.5||HIGH
EPSS-0.79% / 51.35%
||
7 Day CHG~0.00%
Published-14 Apr, 2026 | 16:58
Updated-19 Jun, 2026 | 16:08
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
.NET and Visual Studio Denial of Service Vulnerability

Stack-based buffer overflow in .NET and Visual Studio allows an unauthorized attacker to deny service over a network.

Action-Not Available
Vendor-Linux Kernel Organization, IncMicrosoft CorporationApple Inc.
Product-visual_studio_2026.netwindowsmacosvisual_studio_2022linux_kernel.NET 10.0Microsoft Visual Studio 2026 version 18.4Microsoft Visual Studio 2022 version 17.14.NET 8.0.NET 9.0Microsoft Visual Studio 2022 version 17.12
CWE ID-CWE-121
Stack-based Buffer Overflow
CWE ID-CWE-20
Improper Input Validation