Levi Broderick

**Name of the Vulnerable Software and Affected Versions** .NET versions prior to 8.0.9 .NET versions prior to 6.0.34 .NET Framework (affected versions not specified) Visual Studio (affected versions not specified) **Description** The issue is related to algorithmic complexity in the .NET platform, .NET Framework, and Visual Studio editor. It may allow a remote attacker to cause a denial of service. **Recommendations** For .NET 8.0 applications, update to version 8.0.9 or later. For .NET 6.0 applications, update to version 6.0.34 or later. For .NET Framework, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Visual Studio, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** .NET, .NET Framework, and Visual Studio (affected versions not specified) **Description** The issue is related to an uncontrolled memory allocation, which can be exploited by a remote attacker to cause a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows Installer (affected versions not specified) **Description** The issue is related to an elevation-of-privilege vulnerability in the Windows Installer service, which is caused by insufficient access restrictions. This vulnerability can be exploited by an attacker to bypass security restrictions and elevate their privileges. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.