CVE-2024-29059

Published: Mar 22, 2024

Modified: Oct 21, 2025

PUBLISHED

CVSS v3.1

7.5

HIGH

.NET Framework Information Disclosure Vulnerability

Vendor	Product	Versions
Microsoft	Microsoft .NET Framework 4.8	affected `4.8.0 - < 4.8.04690.02`
Microsoft	Microsoft .NET Framework 3.5 AND 4.8	affected `4.8.0 - < 4.8.04690.02`
Microsoft	Microsoft .NET Framework 3.5 AND 4.7.2	affected `4.7.0 - < 4.7.04081.03`
Microsoft	Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2	affected `4.7.0 - < 4.7.04081.03`
Microsoft	Microsoft .NET Framework 3.5 AND 4.8.1	affected `4.8.1 - < 4.8.09214.01`
Microsoft	Microsoft .NET Framework 4.6.2	affected `4.7.0 - < 4.7.04081.03`
Microsoft	Microsoft .NET Framework 3.5 AND 4.6/4.6.2	affected `10.0.0 - < 10.0.10240.20402`
Microsoft	Microsoft .NET Framework 2.0 Service Pack 2	affected `2.0.0 - < 3.0.50727.8976`
Microsoft	Microsoft .NET Framework 3.0 Service Pack 2	affected `3.0.0 - < 3.0.50727.8976`
Microsoft	Microsoft .NET Framework 3.5	affected `3.5.0 - < 3.0.50727.8976`
Microsoft	Microsoft .NET Framework 3.5.1	affected `3.5.0 - < 3.0.30729.8959`

CVSS v3.1 Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.