PT-2025-42009 · Microsoft+8 · .Net Framework+9

Published

2025-10-14

Updated

2026-02-17

CVE-2025-55248

CVSS v3.1

5.7

Medium

Vector

AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions .NET, .NET Framework, Visual Studio (affected versions not specified)

Description An issue with encryption strength exists in .NET, .NET Framework, and Visual Studio. This can allow an attacker who is already authorized to disclose information over a network.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Inadequate Encryption Strength

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-326

Related Identifiers

ALSA-2025:18148

ALSA-2025:18149

ALSA-2025:18150

ALSA-2025:18151

ALSA-2025:18152

ALSA-2025:18153

ALT-PU-2025-13074

ALT-PU-2025-13075

ALT-PU-2025-13670

ALT-PU-2025-13674

BDU:2025-13257

BIT-DOTNET-2025-55248

BIT-DOTNET-SDK-2025-55248

CESA-2025_18148

CESA-2025_18150

CVE-2025-55248

GHSA-987X-96FQ-9384

GHSA-GWQ6-FMVP-QP68

INFSA-2025_18148

INFSA-2025_18149

INFSA-2025_18150

INFSA-2025_18151

RHSA-2025_18148

RHSA-2025_18149

RHSA-2025_18150

RHSA-2025_18151

RHSA-2026:9080

RHSA-2026:9205

USN-7822-1

Affected Products

.Net Framework

Alt Linux

Almalinux

Centos

Linuxmint

Red Hat

Red Os

Rocky Linux

Ubuntu

Visual Studio

CVE-2025-55248

Weakness Enumeration

Related Identifiers

Affected Products

References · 61