PT-2024-7346 · Microsoft+8 · Net+9

Radek Zikmund

Published

2024-10-08

Updated

2025-12-16

CVE-2024-38229

CVSS v4.0

8.2

High

Vector

AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P

Name of the Vulnerable Software and Affected Versions: .NET and Visual Studio (affected versions not specified)

Description: The issue is related to a use-after-free memory vulnerability in the .NET and Visual Studio software platform. This vulnerability can be exploited by a remote attacker to execute arbitrary code.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

RCE

DoS

Use After Free

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416CWE-362

Related Identifiers

ALSA-2024:7868

ALSA-2024:7869

ALT-PU-2024-16695

ALT-PU-2024-16697

ALT-PU-2024-16751

ALT-PU-2024-16753

ALT-PU-2024-16799

ALT-PU-2024-16800

ALT-PU-2025-15798

ALT-PU-2025-5282

BDU:2024-08706

BDU:2025-12583

BIT-DOTNET-2024-38229

BIT-DOTNET-SDK-2024-38229

CESA-2024_7868

CVE-2024-38229

GHSA-7VW9-CFWX-9GX9

INFSA-2024_7868

INFSA-2024_7869

RHSA-2024:7868

RHSA-2024:7869

RHSA-2024_7868

RHSA-2024_7869

RLSA-2024:7868

RLSA-2024:7869

USN-7058-1

Affected Products

Alt Linux

Almalinux

Centos

Linuxmint

Net

Red Hat

Red Os

Rocky Linux

Ubuntu

Visual Studio

PT-2024-7346 · Microsoft+8 · Net+9

CVE-2024-38229

Weakness Enumeration

Related Identifiers

Affected Products

References · 60