CVE-2022-24512 - Security Update Guide - Microsoft - .NET and Visual Studio Remo...
source link: https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2022-24512
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
-
- Customer Guidance
-
-
.NET and Visual Studio Remote Code Execution Vulnerability
CVE-2022-24512Released: Mar 8, 2022 Last updated: Mar 8, 2022
Please see Common Vulnerability Scoring System for more information on the definition of these metrics.
Exploitability
Why are Confidentiality, Integrity, and Availability rated as low in CVSS?
While we cannot rule out the impact to Confidentiality, Integrity, and Availability, the ability to exploit this vulnerability by itself is limited. An attacker would need to combine this with other vulnerabilities to perform an attack.
According to the CVSS, User Interaction is Required. What interaction would the user have to do?
Exploitation of this vulnerability requires that a user trigger the payload in the application.
Acknowledgements
Security Updates
Disclaimer
Revisions
Information published.
Corrected Article links in the Security Updates table. This is an informational change only.
Recommend
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK