CVE-2024-21312

📊 7.5 HIGH⚡ 3.9%🎯 0 exploits

📅 Published Jan 9, 2024

📋 Status: Modified

.NET Framework Denial of Service Vulnerability

🎯 Affected Products & Systems

37 product configurations affected

Filter by type:

Type	Vendor	Product	Version Range	Status	CPE String
📱App	microsoft	.net framework	3.5	Vulnerable	cpe:2.3:a:microsoft:.net_framework:3.5:-::::::
💻OS	microsoft	windows server 2012	All versions	Not Vulnerable	cpe:2.3:o:microsoft:windows_server_2012:-:::::::*
💻OS	microsoft	windows server 2012	r2	Not Vulnerable	cpe:2.3:o:microsoft:windows_server_2012:r2:::::::*
📱App	microsoft	.net framework	3.5	Vulnerable	cpe:2.3:a:microsoft:.net_framework:3.5:-::::::
📱App	microsoft	.net framework	4.8.1	Vulnerable	cpe:2.3:a:microsoft:.net_framework:4.8.1:::::::*
💻OS	microsoft	windows 10 21h2	All versions	Not Vulnerable	cpe:2.3:o:microsoft:windows_10_21h2:-:::::::*
💻OS	microsoft	windows 10 22h2	All versions	Not Vulnerable	cpe:2.3:o:microsoft:windows_10_22h2:-:::::::*
💻OS	microsoft	windows 11 21h2	All versions	Not Vulnerable	cpe:2.3:o:microsoft:windows_11_21h2:-:::::::*
💻OS	microsoft	windows 11 22h2	All versions	Not Vulnerable	cpe:2.3:o:microsoft:windows_11_22h2:-:::::::*
💻OS	microsoft	windows 11 23h2	All versions	Not Vulnerable	cpe:2.3:o:microsoft:windows_11_23h2:-:::::::*
💻OS	microsoft	windows server 2022	All versions	Not Vulnerable	cpe:2.3:o:microsoft:windows_server_2022:-:::::::*
📱App	microsoft	.net framework	4.6.2	Vulnerable	cpe:2.3:a:microsoft:.net_framework:4.6.2:::::::*
📱App	microsoft	.net framework	4.7	Vulnerable	cpe:2.3:a:microsoft:.net_framework:4.7:::::::*
📱App	microsoft	.net framework	4.7.1	Vulnerable	cpe:2.3:a:microsoft:.net_framework:4.7.1:::::::*
📱App	microsoft	.net framework	4.7.2	Vulnerable	cpe:2.3:a:microsoft:.net_framework:4.7.2:::::::*
💻OS	microsoft	windows server 2008	r2 Target HW: x64	Not Vulnerable	cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:::::x64:*
💻OS	microsoft	windows server 2012	All versions	Not Vulnerable	cpe:2.3:o:microsoft:windows_server_2012:-:::::::*
💻OS	microsoft	windows server 2012	r2	Not Vulnerable	cpe:2.3:o:microsoft:windows_server_2012:r2:::::::*
📱App	microsoft	.net framework	3.5	Vulnerable	cpe:2.3:a:microsoft:.net_framework:3.5:-::::::
📱App	microsoft	.net framework	4.7.2	Vulnerable	cpe:2.3:a:microsoft:.net_framework:4.7.2:::::::*
💻OS	microsoft	windows 10 1607	All versions	Not Vulnerable	cpe:2.3:o:microsoft:windows_10_1607:-:::::::*
💻OS	microsoft	windows 10 1809	All versions	Not Vulnerable	cpe:2.3:o:microsoft:windows_10_1809:-:::::::*
💻OS	microsoft	windows server 2016	All versions	Not Vulnerable	cpe:2.3:o:microsoft:windows_server_2016:-:::::::*
💻OS	microsoft	windows server 2019	All versions	Not Vulnerable	cpe:2.3:o:microsoft:windows_server_2019:-:::::::*
📱App	microsoft	.net framework	4.8	Vulnerable	cpe:2.3:a:microsoft:.net_framework:4.8:::::::*
💻OS	microsoft	windows 10 1607	All versions	Not Vulnerable	cpe:2.3:o:microsoft:windows_10_1607:-:::::::*
💻OS	microsoft	windows server 2012	All versions	Not Vulnerable	cpe:2.3:o:microsoft:windows_server_2012:-:::::::*
💻OS	microsoft	windows server 2012	r2	Not Vulnerable	cpe:2.3:o:microsoft:windows_server_2012:r2:::::::*
💻OS	microsoft	windows server 2016	All versions	Not Vulnerable	cpe:2.3:o:microsoft:windows_server_2016:-:::::::*
📱App	microsoft	.net framework	3.5	Vulnerable	cpe:2.3:a:microsoft:.net_framework:3.5:-::::::
📱App	microsoft	.net framework	4.8	Vulnerable	cpe:2.3:a:microsoft:.net_framework:4.8:::::::*
💻OS	microsoft	windows 10 1809	All versions	Not Vulnerable	cpe:2.3:o:microsoft:windows_10_1809:-:::::::*
💻OS	microsoft	windows 10 21h2	All versions	Not Vulnerable	cpe:2.3:o:microsoft:windows_10_21h2:-:::::::*
💻OS	microsoft	windows 10 22h2	All versions	Not Vulnerable	cpe:2.3:o:microsoft:windows_10_22h2:-:::::::*
💻OS	microsoft	windows 11 21h2	All versions	Not Vulnerable	cpe:2.3:o:microsoft:windows_11_21h2:-:::::::*
💻OS	microsoft	windows server 2019	All versions	Not Vulnerable	cpe:2.3:o:microsoft:windows_server_2019:-:::::::*
💻OS	microsoft	windows server 2022	All versions	Not Vulnerable	cpe:2.3:o:microsoft:windows_server_2022:-:::::::*

📱

microsoft / .net framework

Application

Vulnerable

Version: 3.5

CPE:

cpe:2.3:a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*

💻

microsoft / windows server 2012

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*

💻

microsoft / windows server 2012

Operating System

Safe

Version: r2

CPE:

cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*

📱

microsoft / .net framework

Application

Vulnerable

Version: 3.5

CPE:

cpe:2.3:a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*

📱

microsoft / .net framework

Application

Vulnerable

Version: 4.8.1

CPE:

cpe:2.3:a:microsoft:.net_framework:4.8.1:*:*:*:*:*:*:*

💻

microsoft / windows 10 21h2

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:*:*

💻

microsoft / windows 10 22h2

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:*:*

💻

microsoft / windows 11 21h2

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:*:*

💻

microsoft / windows 11 22h2

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:*:*

💻

microsoft / windows 11 23h2

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:microsoft:windows_11_23h2:-:*:*:*:*:*:*:*

💻

microsoft / windows server 2022

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*

📱

microsoft / .net framework

Application

Vulnerable

Version: 4.6.2

CPE:

cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*

📱

microsoft / .net framework

Application

Vulnerable

Version: 4.7

CPE:

cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*

📱

microsoft / .net framework

Application

Vulnerable

Version: 4.7.1

CPE:

cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*

📱

microsoft / .net framework

Application

Vulnerable

Version: 4.7.2

CPE:

cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*

💻

microsoft / windows server 2008

Operating System

Safe

Version: r2

Target HW: x64

CPE:

cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*

💻

microsoft / windows server 2012

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*

💻

microsoft / windows server 2012

Operating System

Safe

Version: r2

CPE:

cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*

📱

microsoft / .net framework

Application

Vulnerable

Version: 3.5

CPE:

cpe:2.3:a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*

📱

microsoft / .net framework

Application

Vulnerable

Version: 4.7.2

CPE:

cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*

💻

microsoft / windows 10 1607

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:*:*

💻

microsoft / windows 10 1809

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:*:*

💻

microsoft / windows server 2016

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*

💻

microsoft / windows server 2019

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*

📱

microsoft / .net framework

Application

Vulnerable

Version: 4.8

CPE:

cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*

💻

microsoft / windows 10 1607

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:*:*

💻

microsoft / windows server 2012

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*

💻

microsoft / windows server 2012

Operating System

Safe

Version: r2

CPE:

cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*

💻

microsoft / windows server 2016

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*

📱

microsoft / .net framework

Application

Vulnerable

Version: 3.5

CPE:

cpe:2.3:a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*

📱

microsoft / .net framework

Application

Vulnerable

Version: 4.8

CPE:

cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*

💻

microsoft / windows 10 1809

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:*:*

💻

microsoft / windows 10 21h2

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:*:*

💻

microsoft / windows 10 22h2

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:*:*

💻

microsoft / windows 11 21h2

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:*:*

💻

microsoft / windows server 2019

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*

💻

microsoft / windows server 2022

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*

37 products•scroll for more

Metrics

7.5 HIGHCVSS v3.1[email protected]

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector:

NETWORK

Complexity:

LOW

Privileges:

NONE

User Interaction:

NONE

Confidentiality:

NONE

Integrity:

NONE

Availability:

HIGH

Scope:

UNCHANGED

🔍 Technical Details

Analysis Status

Modified

CVSS Details

7.5 (HIGH)v3.1

Source: [email protected]

EPSS Details

3.9% (Minimal)87.8th percentile

Last updated: Nov 1, 2025

Exploitation probability within 30 days

Published Date

Jan 9, 2024 (1 year ago)

Last Modified

Nov 21, 2024 (11 months ago)

Security Weaknesses2

CWE-20

References3

NVDpatchadvisory