PT-2025-1111 · Microsoft+8 · .Net Framework+9

Goodbyeselene

Published

2025-01-14

Updated

2025-12-16

CVE-2025-21172

CVSS v2.0

7.6

High

Vector

AV:N/AC:H/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions .NET and Visual Studio (affected versions not specified)

Description The issue is related to a buffer overflow in dynamic memory, which can allow a remote attacker to execute arbitrary code.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Heap Based Buffer Overflow

Integer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-122CWE-190

Related Identifiers

ALSA-2025:0381

ALSA-2025:0382

ALT-PU-2025-13074

ALT-PU-2025-13075

ALT-PU-2025-15796

ALT-PU-2025-5283

BDU:2025-00367

BDU:2025-12582

BIT-DOTNET-2025-21172

BIT-DOTNET-SDK-2025-21172

CESA-2025_0381

CESA-2025_0382

CVE-2025-21172

GHSA-JJCV-WR2G-4RV4

INFBA-2025_0304

INFBA-2025_0305

INFSA-2025_0381

INFSA-2025_0382

RHSA-2025:0381

RHSA-2025:0382

RHSA-2025:0532

RHSA-2025_0381

RHSA-2025_0382

RLSA-2025:0381

RLSA-2025:0382

USN-7210-1

Affected Products

.Net Framework

Alt Linux

Almalinux

Centos

Linuxmint

Red Hat

Red Os

Rocky Linux

Ubuntu

Visual Studio

CVE-2025-21172

Weakness Enumeration

Related Identifiers

Affected Products

References · 55