PT-2024-7146 · Microsoft+8 · Visual Studio+10

Levi Broderick

·

Published

2024-10-08

·

Updated

2026-03-10

·

CVE-2024-43483

CVSS v4.0

8.8

High

VectorAV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N
Name of the Vulnerable Software and Affected Versions .NET versions prior to 8.0.9 .NET versions prior to 6.0.34 .NET Framework (affected versions not specified) Visual Studio (affected versions not specified)
Description The issue is related to algorithmic complexity in the .NET platform, .NET Framework, and Visual Studio editor. It may allow a remote attacker to cause a denial of service.
Recommendations For .NET 8.0 applications, update to version 8.0.9 or later. For .NET 6.0 applications, update to version 6.0.34 or later. For .NET Framework, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Visual Studio, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Weakness Enumeration

CWE-407

Related Identifiers

ALSA-2024:7851
ALSA-2024:7867
ALSA-2024:7868
ALSA-2024:7869
ALT-PU-2024-16695
ALT-PU-2024-16697
ALT-PU-2024-16742
ALT-PU-2024-16744
ALT-PU-2024-16751
ALT-PU-2024-16753
ALT-PU-2024-16792
ALT-PU-2024-16794
ALT-PU-2024-16799
ALT-PU-2024-16800
ALT-PU-2025-15798
ALT-PU-2025-5282
BDU:2024-08478
BIT-DOTNET-2024-43483
BIT-DOTNET-SDK-2024-43483
CESA-2024_7851
CESA-2024_7868
CVE-2024-43483
GHSA-QJ66-M88J-HMGJ
INFSA-2024_7851
INFSA-2024_7867
INFSA-2024_7868
INFSA-2024_7869
RHSA-2024:7851
RHSA-2024:7867
RHSA-2024:7868
RHSA-2024:7869
RHSA-2024:8036
RHSA-2024:8047
RHSA-2024:8048
RHSA-2024:8082
RHSA-2024_7851
RHSA-2024_7867
RHSA-2024_7868
RHSA-2024_7869
RLSA-2024:7851
RLSA-2024:7867
RLSA-2024:7868
RLSA-2024:7869
USN-7058-1

Affected Products

.Net Framework
Alt Linux
Almalinux
Centos
Linuxmint
Net
Red Hat
Red Os
Rocky Linux
Ubuntu
Visual Studio