Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
.NET Number Of NVD 77 CRITICAL 3 HIGH 60 MEDIUM 14 LOW 0
URL https://docs.microsoft.com/ja-jp/dotnet/
Explanation NET is a free and open source development platform for building various types of apps, including

Web apps, Web APIs, and microservices
Serverless functions in the cloud
Cloud native apps
Mobile apps
Desktop apps
Windows WPF
Windows Forms
Universal Windows Platform (UWP)
Games
Internet of Things (IoT)
Machine Learning
Console Apps
Windows Services
Use class libraries to share functionality between different apps and app types.

NET, your code and project files will look the same regardless of the type of app you build. NET, your code and project files will look the same regardless of the type of app you build.

Excerpted from [https://docs.microsoft.com/ja-jp/dotnet/core/introduction]
Tag
  • MIT License
  • Apache License v2.0
Add Information URL
No Type Name URL
1 https://docs.microsoft.com/ja-jp/dotnet/core/releases-and-support
2 https://github.com/dotnet/core/blob/main/roadmap.md
3 https://github.com/dotnet/core/blob/main/release-notes/README.md
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
21 .NET 9 9.0.0 Preview 7 Aug. 13, 2024 Feb. 13, 2024 3 60 14 0
22 .NET 8 8.0.401 Aug. 15, 2024 Nov. 14, 2023 2 10 2 0
23 .NET 7 7.0.20 May 28, 2024 Nov. 8, 2022 2 23 4 0
24 .NET 6 6.0.33 Aug. 13, 2024 Nov. 8, 2021 Nov. 8, 2024 2 34 6 0
25 .NET 5 5.0.17 May 10, 2022 Nov. 10, 2020 0 10 6 0
26 .NET Core 3.1 (LTS) 3.1.32 Dec. 13, 2022 Dec. 3, 2019 Dec. 3, 2022 0 14 7 0
27 .NET Core 3.0 3.0.3 Feb. 18, 2020 Sept. 23, 2019 March 3, 2020 0 3 0 0
28 .NET Core 2.2 2.2.8 Nov. 19, 2019 Dec. 4, 2018 Dec. 23, 2019 0 5 1 0
29 .NET Core 2.1 (LTS) 2.1.30 Aug. 20, 2021 May 30, 2018 Aug. 21, 2021 0 11 3 0
30 .NET Core 2.0 2.0.9 July 10, 2018 Aug. 14, 2017 Oct. 1, 2018 0 3 1 0
31 .NET Core 1.1 1.1.13 March 7, 2017 Nov. 16, 2016 June 27, 2019 0 4 1 0
32 .NET Core 1.0 1.0.16 May 14, 2019 June 27, 2016 June 27, 2019 0 6 2 0
33 .NET 6.0 6.0.2 2 34 6 0
34 .NET 4.8 4.8.1 0 0 0 0
35 .NET 4.7 4.7.2 0 0 0 0
36 .NET 4.6 4.6.2 0 0 0 0
37 .NET 4.5 4.5 0 0 0 0
38 .NET 4.0 4.0 0 0 0 0
39 .NET 3.5 3.5.1 0 0 0 0
40 .NET 1.1 1.1.9 0 4 1 0
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
21 7.5
- 		HIGH
Network 		The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. NVD-CWE-noinfo
CVE-2023-44487 cpe:2.3:a:microsoft:.net:*:* 7.0.0
6.0.0

7.0.12
6.0.23 		2025-03-8 04:15
2023-10-10 		Show GitHub Exploit DB Packet Storm
22 6.5
- 		MEDIUM
Network 		.NET Core and Visual Studio Denial of Service Vulnerability NVD-CWE-noinfo
CVE-2023-36799 cpe:2.3:a:microsoft:.net:7.0.0:*
cpe:2.3:a:microsoft:.net:6.0.0:- 		2024-11-21 17:10
2023-09-13 		Show GitHub Exploit DB Packet Storm
23 7.8
- 		HIGH
Local 		Visual Studio Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2023-36796 cpe:2.3:a:microsoft:.net:7.0.0:*
cpe:2.3:a:microsoft:.net:6.0.0:- 		2024-11-21 17:10
2023-09-13 		Show GitHub Exploit DB Packet Storm
24 7.8
- 		HIGH
Local 		Visual Studio Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2023-36794 cpe:2.3:a:microsoft:.net:7.0.0:*
cpe:2.3:a:microsoft:.net:6.0.0:- 		2024-11-21 17:10
2023-09-13 		Show GitHub Exploit DB Packet Storm
25 7.8
- 		HIGH
Local 		Visual Studio Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2023-36793 cpe:2.3:a:microsoft:.net:7.0.0:*
cpe:2.3:a:microsoft:.net:6.0.0:- 		2024-11-21 17:10
2023-09-13 		Show GitHub Exploit DB Packet Storm
26 7.8
- 		HIGH
Local 		Visual Studio Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2023-36792 cpe:2.3:a:microsoft:.net:7.0.0:*
cpe:2.3:a:microsoft:.net:6.0.0:- 		2024-11-21 17:10
2023-09-13 		Show GitHub Exploit DB Packet Storm
27 7.5
- 		HIGH
Network 		ASP.NET Core SignalR and Visual Studio Information Disclosure Vulnerability NVD-CWE-noinfo
CVE-2023-35391 cpe:2.3:a:microsoft:.net:*:* 6.0.0
7.0.0

6.0.21
7.0.10 		2024-11-21 17:08
2023-08-9 		Show GitHub Exploit DB Packet Storm
28 7.5
- 		HIGH
Network 		.NET and Visual Studio Denial of Service Vulnerability NVD-CWE-noinfo
CVE-2023-38180 cpe:2.3:a:microsoft:.net:*:* 6.0.0
7.0.0

6.0.21
7.0.10 		2025-03-8 07:03
2023-08-9 		Show GitHub Exploit DB Packet Storm
29 7.8
- 		HIGH
Local 		.NET and Visual Studio Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2023-35390 cpe:2.3:a:microsoft:.net:*:* 6.0.0
7.0.0

6.0.21
7.0.10 		2024-11-21 17:08
2023-08-9 		Show GitHub Exploit DB Packet Storm
30 7.5
- 		HIGH
Network 		.NET Core and Visual Studio Denial of Service Vulnerability NVD-CWE-noinfo
CVE-2023-38178 cpe:2.3:a:microsoft:.net:6.0.0:- 2024-11-21 17:13
2023-08-9 		Show GitHub Exploit DB Packet Storm