.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability - CVE-2023-36049ID: oval:org.secpod.oval:def:94441 | Date: (C)2023-11-15 (M)2024-04-18 |
Class: VULNERABILITY | Family: windows |
.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability. To exploit this vulnerability an attacker would have to inject arbitrary commands to the FTP server. The type of information that could be disclosed if an attacker successfully exploited this vulnerability would be access controls on the server, allowing for read or write abilities.
Platform: |
Microsoft Windows 10 |
Microsoft Windows 8.1 |
Microsoft Windows Server |
Microsoft Windows Server 2008 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows Server 2012 |
Microsoft Windows Server 2012 R2 |
Microsoft Windows Server 2019 |
Microsoft Windows 11 |
Microsoft Windows Server 2016 |
Microsoft Windows Server 2022 |
Product: |
Microsoft .NET Framework 3.5 |
Microsoft .NET Framework 2.0 |
Microsoft .NET Framework 3.0 |
Microsoft .NET Framework 3.5.1 |
Microsoft .NET Framework 4.6 |
Microsoft .NET Framework 4.6.2 |
Microsoft .NET Framework 4.7 |
Microsoft .NET Framework 4.7.1 |
Microsoft .NET Framework 4.7.2 |
Microsoft .NET Framework 4.8 |
Microsoft .NET Framework 4.8.1 |
Microsoft Visual Studio 2022 |
Microsoft .NET core runtime 6.0 |
Microsoft .NET core runtime 7.0 |
Microsoft .NET core runtime 8.0 |
Microsoft PowerShell Core 7.2 |
Microsoft PowerShell Core 7.3 |
Microsoft PowerShell Core 7.4 |