PT-2024-26412 · Microsoft+8 · Visual Studio+9

Radek Zikmund

Published

2024-07-09

Updated

2024-12-13

CVE-2024-35264

CVSS v4.0

9.2

Critical

Vector

AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Name of the Vulnerable Software and Affected Versions .NET and Visual Studio (affected versions not specified)

Description The issue concerns a remote code execution vulnerability. No specific details about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited are provided.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

DoS

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2024:4450

ALSA-2024:4451

ALT-PU-2024-12832

ALT-PU-2024-12835

ALT-PU-2024-12836

ALT-PU-2024-13115

ALT-PU-2024-13119

ALT-PU-2024-13120

ALT-PU-2024-16799

ALT-PU-2024-16800

ALT-PU-2024-16801

BIT-DOTNET-2024-35264

BIT-DOTNET-SDK-2024-35264

CESA-2024_4451

CVE-2024-35264

GHSA-CHFC-9W6M-75RF

INFSA-2024_4450

INFSA-2024_4451

RHSA-2024:4450

RHSA-2024:4451

RHSA-2024_4450

RHSA-2024_4451

RLSA-2024:4450

RLSA-2024:4451

USN-6889-1

Affected Products

.Net Framework

Alt Linux

Almalinux

Centos

Linuxmint

Red Hat

Red Os

Rocky Linux

Ubuntu

Visual Studio

PT-2024-26412 · Microsoft+8 · Visual Studio+9

CVE-2024-35264

Weakness Enumeration

Related Identifiers

Affected Products

References · 57