CVE-2024-29059
📊 7.5 HIGH⚡ 93.8%🎯 0 exploits🏛️ KEV Listed
📅 Published Mar 23, 2024
📋 Status: Analyzed
.NET Framework Information Disclosure Vulnerability
CVSS v3.1 • [email protected]
🎯 Affected Products & Systems
51 product configurations affected
Filter by type:
| Type | Vendor | Product | Version Range | Status | CPE String |
|---|---|---|---|---|---|
📱App | microsoft | .net framework | 3.5 | Vulnerable | cpe:2.3:a:microsoft:.net_framework:3.5:-:*:*:*:*:*:* |
📱App | microsoft | .net framework | 4.7.2 | Vulnerable | cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:* |
💻OS | microsoft | windows 10 1607 | All versions | Not Vulnerable | cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:*:* |
💻OS | microsoft | windows 10 1809 | All versions Target HW: x64 | Not Vulnerable | cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:* |
💻OS | microsoft | windows server 2016 | All versions | Not Vulnerable | cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:* |
💻OS | microsoft | windows server 2019 | All versions | Not Vulnerable | cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:* |
📱App | microsoft | .net framework | 3.5 | Vulnerable | cpe:2.3:a:microsoft:.net_framework:3.5:-:*:*:*:*:*:* |
📱App | microsoft | .net framework | 4.8 | Vulnerable | cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:* |
💻OS | microsoft | windows 10 1607 | All versions | Not Vulnerable | cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:*:* |
💻OS | microsoft | windows 10 1809 | All versions | Not Vulnerable | cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:*:* |
💻OS | microsoft | windows 10 21h2 | All versions | Not Vulnerable | cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:*:* |
💻OS | microsoft | windows 10 22h2 | All versions | Not Vulnerable | cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:*:* |
💻OS | microsoft | windows 11 21h2 | All versions | Not Vulnerable | cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:*:* |
💻OS | microsoft | windows server 2019 | All versions | Not Vulnerable | cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:* |
💻OS | microsoft | windows server 2022 | All versions | Not Vulnerable | cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:* |
📱App | microsoft | .net framework | 3.5.1 | Vulnerable | cpe:2.3:a:microsoft:.net_framework:3.5.1:*:*:*:*:*:*:* |
💻OS | microsoft | windows server 2008 | r2 Target HW: x64 | Not Vulnerable | cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:* |
💻OS | microsoft | windows server 2012 | All versions | Not Vulnerable | cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:* |
💻OS | microsoft | windows server 2012 | r2 | Not Vulnerable | cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:* |
📱App | microsoft | .net framework | 2.0 | Vulnerable | cpe:2.3:a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:* |
📱App | microsoft | .net framework | 3.0 | Vulnerable | cpe:2.3:a:microsoft:.net_framework:3.0:sp2:*:*:*:*:*:* |
💻OS | microsoft | windows server 2008 | All versions | Not Vulnerable | cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:* |
📱App | microsoft | .net framework | 3.5 | Vulnerable | cpe:2.3:a:microsoft:.net_framework:3.5:-:*:*:*:*:*:* |
📱App | microsoft | .net framework | 4.6 | Vulnerable | cpe:2.3:a:microsoft:.net_framework:4.6:*:*:*:*:*:*:* |
📱App | microsoft | .net framework | 4.6.2 | Vulnerable | cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:* |
💻OS | microsoft | windows 10 1507 | All versions Target HW: x64 | Not Vulnerable | cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x64:* |
💻OS | microsoft | windows 10 1507 | All versions Target HW: x86 | Not Vulnerable | cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x86:* |
📱App | microsoft | .net framework | 4.6.2 | Vulnerable | cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:* |
💻OS | microsoft | windows server 2008 | All versions | Not Vulnerable | cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:* |
📱App | microsoft | .net framework | 3.5 | Vulnerable | cpe:2.3:a:microsoft:.net_framework:3.5:-:*:*:*:*:*:* |
📱App | microsoft | .net framework | 4.8.1 | Vulnerable | cpe:2.3:a:microsoft:.net_framework:4.8.1:*:*:*:*:*:*:* |
💻OS | microsoft | windows 10 21h2 | All versions | Not Vulnerable | cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:*:* |
💻OS | microsoft | windows 10 22h2 | All versions | Not Vulnerable | cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:*:* |
💻OS | microsoft | windows 11 21h2 | All versions | Not Vulnerable | cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:*:* |
💻OS | microsoft | windows 11 22h2 | All versions | Not Vulnerable | cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:*:* |
💻OS | microsoft | windows 11 23h2 | All versions | Not Vulnerable | cpe:2.3:o:microsoft:windows_11_23h2:-:*:*:*:*:*:*:* |
💻OS | microsoft | windows server 2022 | All versions | Not Vulnerable | cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:* |
💻OS | microsoft | windows server 2022 23h2 | All versions | Not Vulnerable | cpe:2.3:o:microsoft:windows_server_2022_23h2:-:*:*:*:*:*:*:* |
📱App | microsoft | .net framework | 4.6.2 | Vulnerable | cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:* |
📱App | microsoft | .net framework | 4.7 | Vulnerable | cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:* |
📱App | microsoft | .net framework | 4.7.1 | Vulnerable | cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:* |
📱App | microsoft | .net framework | 4.7.2 | Vulnerable | cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:* |
💻OS | microsoft | windows server 2008 | r2 Target HW: x64 | Not Vulnerable | cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:* |
💻OS | microsoft | windows server 2012 | All versions | Not Vulnerable | cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:* |
💻OS | microsoft | windows server 2012 | r2 | Not Vulnerable | cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:* |
📱App | microsoft | .net framework | 4.8 | Vulnerable | cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:* |
💻OS | microsoft | windows 10 1607 | All versions | Not Vulnerable | cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:*:* |
💻OS | microsoft | windows server 2008 | r2 Target HW: x64 | Not Vulnerable | cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:* |
💻OS | microsoft | windows server 2012 | All versions | Not Vulnerable | cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:* |
💻OS | microsoft | windows server 2012 | r2 | Not Vulnerable | cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:* |
💻OS | microsoft | windows server 2016 | All versions | Not Vulnerable | cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:* |
📱
VulnerableApplication
Version: 3.5
CPE:
cpe:2.3:a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*
📱
VulnerableApplication
Version: 4.7.2
CPE:
cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*
💻
SafeOperating System
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:*:*
💻
SafeOperating System
Version: All versions
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*
💻
SafeOperating System
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*
💻
SafeOperating System
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*
📱
VulnerableApplication
Version: 3.5
CPE:
cpe:2.3:a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*
📱
VulnerableApplication
Version: 4.8
CPE:
cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*
💻
SafeOperating System
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:*:*
💻
SafeOperating System
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:*:*
💻
SafeOperating System
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:*:*
💻
SafeOperating System
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:*:*
💻
SafeOperating System
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:*:*
💻
SafeOperating System
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*
💻
SafeOperating System
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*
📱
VulnerableApplication
Version: 3.5.1
CPE:
cpe:2.3:a:microsoft:.net_framework:3.5.1:*:*:*:*:*:*:*
💻
SafeOperating System
Version: r2
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*
💻
SafeOperating System
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
💻
SafeOperating System
Version: r2
CPE:
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*
📱
VulnerableApplication
Version: 2.0
CPE:
cpe:2.3:a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:*
📱
VulnerableApplication
Version: 3.0
CPE:
cpe:2.3:a:microsoft:.net_framework:3.0:sp2:*:*:*:*:*:*
💻
SafeOperating System
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*
📱
VulnerableApplication
Version: 3.5
CPE:
cpe:2.3:a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*
📱
VulnerableApplication
Version: 4.6
CPE:
cpe:2.3:a:microsoft:.net_framework:4.6:*:*:*:*:*:*:*
📱
VulnerableApplication
Version: 4.6.2
CPE:
cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*
💻
SafeOperating System
Version: All versions
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x64:*
💻
SafeOperating System
Version: All versions
Target HW: x86
CPE:
cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:x86:*
📱
VulnerableApplication
Version: 4.6.2
CPE:
cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*
💻
SafeOperating System
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*
📱
VulnerableApplication
Version: 3.5
CPE:
cpe:2.3:a:microsoft:.net_framework:3.5:-:*:*:*:*:*:*
📱
VulnerableApplication
Version: 4.8.1
CPE:
cpe:2.3:a:microsoft:.net_framework:4.8.1:*:*:*:*:*:*:*
💻
SafeOperating System
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:*:*
💻
SafeOperating System
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:*:*
💻
SafeOperating System
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_11_21h2:-:*:*:*:*:*:*:*
💻
SafeOperating System
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:*:*
💻
SafeOperating System
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_11_23h2:-:*:*:*:*:*:*:*
💻
SafeOperating System
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*
💻
SafeOperating System
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2022_23h2:-:*:*:*:*:*:*:*
📱
VulnerableApplication
Version: 4.6.2
CPE:
cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*
📱
VulnerableApplication
Version: 4.7
CPE:
cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*
📱
VulnerableApplication
Version: 4.7.1
CPE:
cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*
📱
VulnerableApplication
Version: 4.7.2
CPE:
cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*
💻
SafeOperating System
Version: r2
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*
💻
SafeOperating System
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
💻
SafeOperating System
Version: r2
CPE:
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*
📱
VulnerableApplication
Version: 4.8
CPE:
cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*
💻
SafeOperating System
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:*:*
💻
SafeOperating System
Version: r2
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*
💻
SafeOperating System
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
💻
SafeOperating System
Version: r2
CPE:
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*
💻
SafeOperating System
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*
51 products•scroll for more
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Attack Vector:
NETWORK
Complexity:
LOW
Privileges:
NONE
User Interaction:
NONE
Confidentiality:
HIGH
Integrity:
NONE
Availability:
NONE
Scope:
UNCHANGED
🔍 Technical Details
Analysis Status
AnalyzedCVSS Details
7.5 (HIGH)v3.1
Source: [email protected]
EPSS Details
93.8% (Critical)99.9th percentile
Last updated: Nov 1, 2025
Exploitation probability within 30 days
Published Date
Mar 23, 2024 (1 year ago)
Last Modified
Oct 28, 2025 (5 days ago)
Security Weaknesses2
CWE-209
References3
NVDadvisoryadvisory