CVE-2023-21722

Published: Feb 14, 2023

Modified: Jan 1, 2025

PUBLISHED

CVSS v3.1

5.0

MEDIUM

.NET Framework Denial of Service Vulnerability

Vendor	Product	Versions
Microsoft	Microsoft .NET Framework 4.8	affected `4.8.0 - < 4.8.4614.08`
Microsoft	Microsoft .NET Framework 3.5 AND 4.8	affected `4.8.0 - < 10.0.04614.06`
Microsoft	Microsoft .NET Framework 3.5 AND 4.7.2	affected `4.7.0 - < 10.0.04038.03`
Microsoft	Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2	affected `4.7.0 - < 4.7.04614.08`
Microsoft	Microsoft .NET Framework 3.5 AND 4.8.1	affected `4.8.1 - < 10.0.09139.02`
Microsoft	Microsoft .NET Framework 4.6.2	affected `4.7.0 - < 4.7.04038.06`
Microsoft	Microsoft .NET Framework 3.5 and 4.6.2	affected `4.7.0 - < 10.0.10240.19747`
Microsoft	Microsoft .NET Framework 2.0 Service Pack 2	affected `2.0.0 - < 2.0.50727.8966`
Microsoft	Microsoft .NET Framework 3.0 Service Pack 2	affected `3.0.0 - < 2.0.50727.8966`
Microsoft	Microsoft .NET Framework 3.5	affected `3.5.0 - < 3.5.50727.8966`
Microsoft	Microsoft .NET Framework 3.5.1	affected `3.5.0 - < 3.5.50727.8966`

CVSS v3.1 Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

Required

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.