CVE-2022-23267

Published May 10, 2022

Last updated a year ago

CVSS high 7.5

Overview

Description: .NET and Visual Studio Denial of Service Vulnerability
Source: secure@microsoft.com
NVD status: Modified

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.5
Impact score: 3.6
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:microsoft:.net:5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C8F02D5C-61F1-4381-8D64-8BEB5CED0DC6"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:.net:6.0.0:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1DE0C8DD-9C73-4876-8193-068F18074B58"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:.net_core:3.1:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "70BE107E-20A0-4998-A8ED-BCC414C6BDBF"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:powershell:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "38B049EF-F1D9-42C5-8226-F28DD68D0106",
            "versionEndExcluding": "7.0.11",
            "versionStartIncluding": "7.0"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:powershell:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "087F1FA2-3A69-4C63-8BC3-A131C4DD2DC8",
            "versionEndExcluding": "7.2.4",
            "versionStartIncluding": "7.2"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4B45D4D8-318F-444E-A07A-274C1DD9CF4C",
            "versionEndExcluding": "16.9.21",
            "versionStartIncluding": "16.0"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2508F0E2-89CA-44CD-B4BA-A5D49C46BA11",
            "versionEndExcluding": "16.11.14",
            "versionStartIncluding": "16.10"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:visual_studio_2022:17.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3393F97F-05CD-4B04-A6E1-3D914652C4E5"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:visual_studio_2022:17.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "950638D8-6997-4058-8A9E-6153A7FC3B32"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A930E247-0B43-43CB-98FF-6CE7B8189835"
          },
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "80E516C0-98A4-4ADE-B69F-66A772E2BAAA"
          },
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References