Sign In

CVE-2024-0057

📊 9.1 CRITICAL2.3%🎯 0 exploits
📅 Published Jan 9, 2024
📋 Status: Modified

NET, .NET Framework, and Visual Studio Security Feature Bypass Vulnerability

🎯 Affected Products & Systems

75 product configurations affected

Filter by type:
📱
microsoft / powershell
Application
Vulnerable
Version: ≥ 7.2 ∧ < 7.2.18
CPE:
cpe:2.3:a:microsoft:powershell:*:*:*:*:*:*:*:*
📱
microsoft / powershell
Application
Vulnerable
Version: ≥ 7.3 ∧ < 7.3.11
CPE:
cpe:2.3:a:microsoft:powershell:*:*:*:*:*:*:*:*
📱
microsoft / powershell
Application
Vulnerable
Version: 7.4
CPE:
cpe:2.3:a:microsoft:powershell:7.4:-:*:*:*:*:*:*
📱
Vulnerable
Version: ≥ 17.2 ∧ < 17.2.23
CPE:
cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*
📱
Vulnerable
Version: ≥ 17.4 ∧ < 17.4.15
CPE:
cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*
📱
Vulnerable
Version: ≥ 17.6 ∧ < 17.6.11
CPE:
cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*
📱
Vulnerable
Version: ≥ 17.8 ∧ < 17.8.4
CPE:
cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*
📱
Vulnerable
Version: ≥ 4.8 ∧ < 4.8.04690.02
CPE:
cpe:2.3:a:microsoft:.net_framework:*:*:*:*:*:*:*:*
💻
microsoft / windows 10 1607
Operating System
Safe
Version: All versions
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*
💻
microsoft / windows 10 1607
Operating System
Safe
Version: All versions
Target HW: x86
CPE:
cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*
💻
microsoft / windows server 2008
Operating System
Safe
Version: r2
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*
💻
microsoft / windows server 2012
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
💻
microsoft / windows server 2012
Operating System
Safe
Version: r2
CPE:
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*
💻
microsoft / windows server 2016
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*
📱
Vulnerable
Version: ≥ 4.8 ∧ < 4.8.04690.01
CPE:
cpe:2.3:a:microsoft:.net_framework:*:*:*:*:*:*:*:*
💻
microsoft / windows server 2008
Operating System
Safe
Version: r2
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*
📱
Vulnerable
Version: 4.6.2
CPE:
cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*
📱
Vulnerable
Version: 4.7
CPE:
cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*
📱
Vulnerable
Version: 4.7.1
CPE:
cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*
📱
Vulnerable
Version: 4.7.2
CPE:
cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*
💻
microsoft / windows server 2008
Operating System
Safe
Version: r2
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*
💻
microsoft / windows server 2012
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
💻
microsoft / windows server 2012
Operating System
Safe
Version: r2
CPE:
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*
📱
Vulnerable
Version: 3.5
CPE:
cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*
📱
Vulnerable
Version: 4.8.1
CPE:
cpe:2.3:a:microsoft:.net_framework:4.8.1:*:*:*:*:*:*:*
💻
microsoft / windows 10 1809
Operating System
Safe
Version: All versions
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*
💻
microsoft / windows 10 1809
Operating System
Safe
Version: All versions
Target HW: x86
CPE:
cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*
💻
microsoft / windows 10 21h2
Operating System
Safe
Version: All versions
Target HW: arm64
CPE:
cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*
💻
microsoft / windows 10 21h2
Operating System
Safe
Version: All versions
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*
💻
microsoft / windows 10 21h2
Operating System
Safe
Version: All versions
Target HW: x86
CPE:
cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*
💻
microsoft / windows 10 22h2
Operating System
Safe
Version: All versions
Target HW: arm64
CPE:
cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*
💻
microsoft / windows 10 22h2
Operating System
Safe
Version: All versions
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*
💻
microsoft / windows 10 22h2
Operating System
Safe
Version: All versions
Target HW: x86
CPE:
cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*
💻
microsoft / windows 11 21h2
Operating System
Safe
Version: All versions
Target HW: arm64
CPE:
cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*
💻
microsoft / windows 11 21h2
Operating System
Safe
Version: All versions
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*
💻
microsoft / windows 11 22h2
Operating System
Safe
Version: All versions
Target HW: arm64
CPE:
cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:*
💻
microsoft / windows 11 22h2
Operating System
Safe
Version: All versions
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:*
💻
microsoft / windows 11 23h2
Operating System
Safe
Version: All versions
Target HW: arm64
CPE:
cpe:2.3:o:microsoft:windows_11_23h2:-:*:*:*:*:*:arm64:*
💻
microsoft / windows 11 23h2
Operating System
Safe
Version: All versions
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_11_23h2:-:*:*:*:*:*:x64:*
💻
microsoft / windows server 2019
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*
💻
microsoft / windows server 2022
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*
💻
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2022_23h2:-:*:*:*:*:*:*:*
📱
Vulnerable
Version: ≥ 4.8 ∧ < 4.8.04690.02
CPE:
cpe:2.3:a:microsoft:.net_framework:*:*:*:*:*:*:*:*
📱
Vulnerable
Version: 3.5
CPE:
cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*
💻
microsoft / windows 10 1809
Operating System
Safe
Version: All versions
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*
💻
microsoft / windows 10 1809
Operating System
Safe
Version: All versions
Target HW: x86
CPE:
cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*
💻
microsoft / windows 10 21h2
Operating System
Safe
Version: All versions
Target HW: arm64
CPE:
cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:*
💻
microsoft / windows 10 21h2
Operating System
Safe
Version: All versions
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:*
💻
microsoft / windows 10 21h2
Operating System
Safe
Version: All versions
Target HW: x86
CPE:
cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:*
💻
microsoft / windows 10 22h2
Operating System
Safe
Version: All versions
Target HW: arm64
CPE:
cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:*
💻
microsoft / windows 10 22h2
Operating System
Safe
Version: All versions
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:*
💻
microsoft / windows 10 22h2
Operating System
Safe
Version: All versions
Target HW: x86
CPE:
cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:*
💻
microsoft / windows 11 21h2
Operating System
Safe
Version: All versions
Target HW: arm64
CPE:
cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:arm64:*
💻
microsoft / windows 11 21h2
Operating System
Safe
Version: All versions
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:x64:*
💻
microsoft / windows 11 22h2
Operating System
Safe
Version: All versions
Target HW: arm64
CPE:
cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:*
💻
microsoft / windows 11 22h2
Operating System
Safe
Version: All versions
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:*
💻
microsoft / windows server 2019
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*
💻
microsoft / windows server 2022
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*
💻
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2022_23h2:-:*:*:*:*:*:*:*
📱
Vulnerable
Version: 3.5
CPE:
cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*
📱
Vulnerable
Version: 4.7.2
CPE:
cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*
💻
microsoft / windows 10 1607
Operating System
Safe
Version: All versions
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*
💻
microsoft / windows 10 1607
Operating System
Safe
Version: All versions
Target HW: x86
CPE:
cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*
💻
microsoft / windows 10 1809
Operating System
Safe
Version: All versions
Target HW: arm64
CPE:
cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:arm64:*
💻
microsoft / windows 10 1809
Operating System
Safe
Version: All versions
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*
💻
microsoft / windows 10 1809
Operating System
Safe
Version: All versions
Target HW: x86
CPE:
cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*
💻
microsoft / windows server 2016
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*
💻
microsoft / windows server 2019
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*
📱
Vulnerable
Version: 2.0
CPE:
cpe:2.3:a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:*
📱
Vulnerable
Version: 3.0
CPE:
cpe:2.3:a:microsoft:.net_framework:3.0:sp2:*:*:*:*:*:*
💻
microsoft / windows server 2008
Operating System
Safe
Version: All versions
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*
💻
microsoft / windows server 2008
Operating System
Safe
Version: All versions
Target HW: x86
CPE:
cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:*
📱
microsoft / .net
Application
Vulnerable
Version: ≥ 6.0.0 ∧ < 6.0.26
CPE:
cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*
📱
microsoft / .net
Application
Vulnerable
Version: ≥ 7.0.0 ∧ < 7.0.15
CPE:
cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*
📱
microsoft / .net
Application
Vulnerable
Version: 8.0.0
CPE:
cpe:2.3:a:microsoft:.net:8.0.0:-:*:*:*:*:*:*
75 productsscroll for more
Metrics
9.1 CRITICALCVSS v3.1[email protected]
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Attack Vector:
NETWORK
Complexity:
LOW
Privileges:
NONE
User Interaction:
NONE
Confidentiality:
HIGH
Integrity:
HIGH
Availability:
NONE
Scope:
UNCHANGED

🔍 Technical Details

Analysis Status
Modified
CVSS Details
9.1 (CRITICAL)v3.1
Source: [email protected]
EPSS Details
2.3% (Minimal)84.4th percentile
Last updated: Nov 1, 2025
Exploitation probability within 30 days
Published Date
Jan 9, 2024 (1 year ago)
Last Modified
Nov 21, 2024 (11 months ago)
Security Weaknesses2
References3