Sign In

CVE-2025-21176

📊 8.8 HIGH0.9%🎯 0 exploits
📅 Published Jan 14, 2025
📋 Status: Modified

.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

🎯 Affected Products & Systems

53 product configurations affected

Filter by type:
📱
microsoft / .net
Application
Vulnerable
Version: 8.0.0
CPE:
cpe:2.3:a:microsoft:.net:8.0.0:-:*:*:*:*:*:*
💻
apple / macos
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
💻
linux / linux kernel
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
💻
microsoft / windows
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
📱
Vulnerable
Version: ≥ 15.0 ∧ < 15.9.69
CPE:
cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
📱
Vulnerable
Version: 4.6
CPE:
cpe:2.3:a:microsoft:.net_framework:4.6:*:*:*:*:*:*:*
📱
Vulnerable
Version: 4.6.2
CPE:
cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*
💻
microsoft / windows 10 1507
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_10_1507:-:*:*:*:*:*:*:*
📱
Vulnerable
Version: 4.6.2
CPE:
cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*
💻
microsoft / windows server 2008
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*
📱
Vulnerable
Version: 3.5
CPE:
cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*
📱
Vulnerable
Version: 4.8.1
CPE:
cpe:2.3:a:microsoft:.net_framework:4.8.1:*:*:*:*:*:*:*
💻
microsoft / windows 10 21h2
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:*:*
💻
microsoft / windows 10 22h2
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:*:*
💻
microsoft / windows 11 22h2
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:*:*
💻
microsoft / windows 11 23h2
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_11_23h2:-:*:*:*:*:*:*:*
💻
microsoft / windows 11 24h2
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_11_24h2:-:*:*:*:*:*:*:*
💻
microsoft / windows server 2022
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*
💻
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2022_23h2:-:*:*:*:*:*:*:*
📱
Vulnerable
Version: 4.6.2
CPE:
cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*
📱
Vulnerable
Version: 4.7
CPE:
cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*
📱
Vulnerable
Version: 4.7.1
CPE:
cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*
📱
Vulnerable
Version: 4.7.2
CPE:
cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*
💻
microsoft / windows server 2008
Operating System
Safe
Version: r2
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*
💻
microsoft / windows server 2012
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
💻
microsoft / windows server 2012
Operating System
Safe
Version: r2
CPE:
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*
📱
Vulnerable
Version: 3.5
CPE:
cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*
📱
Vulnerable
Version: 4.6.2
CPE:
cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*
📱
Vulnerable
Version: 4.7
CPE:
cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*
📱
Vulnerable
Version: 4.7.1
CPE:
cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*
📱
Vulnerable
Version: 4.7.2
CPE:
cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*
💻
microsoft / windows 10 1607
Operating System
Safe
Version: All versions
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*
💻
microsoft / windows 10 1607
Operating System
Safe
Version: All versions
Target HW: x86
CPE:
cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*
📱
Vulnerable
Version: 3.5
CPE:
cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*
📱
Vulnerable
Version: 4.7.2
CPE:
cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*
💻
microsoft / windows 10 1809
Operating System
Safe
Version: All versions
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:*
💻
microsoft / windows 10 1809
Operating System
Safe
Version: All versions
Target HW: x86
CPE:
cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:*
💻
microsoft / windows 10 21h2
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:*:*
💻
microsoft / windows 10 22h2
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:*:*
💻
microsoft / windows server 2016
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*
💻
microsoft / windows server 2019
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*
💻
microsoft / windows server 2022
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*
📱
Vulnerable
Version: 4.8
CPE:
cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*
💻
microsoft / windows 10 1607
Operating System
Safe
Version: All versions
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:*
💻
microsoft / windows 10 1607
Operating System
Safe
Version: All versions
Target HW: x86
CPE:
cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:*
💻
microsoft / windows server 2008
Operating System
Safe
Version: r2
Target HW: x64
CPE:
cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*
💻
microsoft / windows server 2012
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
💻
microsoft / windows server 2012
Operating System
Safe
Version: r2
CPE:
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*
💻
microsoft / windows server 2016
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*
📱
microsoft / .net
Application
Vulnerable
Version: 9.0.0
CPE:
cpe:2.3:a:microsoft:.net:9.0.0:*:*:*:*:*:*:*
💻
apple / macos
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
💻
linux / linux kernel
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
💻
microsoft / windows
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
53 productsscroll for more
Metrics
8.8 HIGHCVSS v3.1[email protected]
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Attack Vector:
NETWORK
Complexity:
LOW
Privileges:
NONE
User Interaction:
REQUIRED
Confidentiality:
HIGH
Integrity:
HIGH
Availability:
HIGH
Scope:
UNCHANGED

🔍 Technical Details

Analysis Status
Modified
CVSS Details
8.8 (HIGH)v3.1
Source: [email protected]
EPSS Details
0.9% (Minimal)74.6th percentile
Last updated: Nov 1, 2025
Exploitation probability within 30 days
Published Date
Jan 14, 2025 (9 months ago)
Last Modified
May 6, 2025 (6 months ago)
Security Weaknesses2
References3