PT-2026-58715 · Microsoft · .Net 10.0+5

Published

2026-07-14

·

Updated

2026-07-14

·

CVE-2026-50526

CVSS v3.1

7.0

High

VectorAV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Improper link resolution before file access ('link following') in .NET allows an authorized attacker to perform tampering locally.

Fix

Link Following

Insufficient Verification of Data Authenticity

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-50526

Affected Products

.Net 10.0
.Net 8.0
.Net 9.0
Visual Studio 2022 Version 17.12
Visual Studio 2022 Version 17.14
Visual Studio 2026 Version 18.7