CVE-2024-30045

Published May 14, 2024

Last updated 2 months ago

CVSS medium 6.3

Overview

Description: .NET and Visual Studio Remote Code Execution Vulnerability
Source: secure@microsoft.com
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Secondary
Base score: 6.3
Impact score: 3.4
Exploitability score: 2.8
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
Severity: MEDIUM

Weaknesses

secure@microsoft.com: CWE-122
nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "98AEF40E-333C-4B7C-A1A7-522459C01F90",
            "versionEndExcluding": "7.0.19",
            "versionStartIncluding": "7.0.0"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "19A6ED34-B810-42BF-9256-8632F965EBED",
            "versionEndExcluding": "8.0.5",
            "versionStartIncluding": "8.0.0"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:powershell:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7D708FAC-81E3-4E60-B9D9-7C7AA614A503",
            "versionEndExcluding": "7.4.3",
            "versionStartIncluding": "7.4"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A8851D8F-C0FC-4957-846E-BEF69B88B9D6",
            "versionEndExcluding": "17.4.19",
            "versionStartIncluding": "17.4.0"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "24B799F3-962A-4366-9B5C-2F60E2098B7D",
            "versionEndExcluding": "17.6.15",
            "versionStartIncluding": "17.6.0"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "55C50579-44BA-4C6A-9CD5-A71D3D80F4E5",
            "versionEndExcluding": "17.8.10",
            "versionStartIncluding": "17.8.0"
          },
          {
            "criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DA2D642F-B4D4-4B84-ACCA-653201079267",
            "versionEndExcluding": "17.9.7",
            "versionStartIncluding": "17.9.0"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References