CVE-2021-26423: .NET Core and Visual Studio Denial of Service Vulnerability
First published: Thu Aug 12 2021(Updated: )
.NET Core and Visual Studio Denial of Service Vulnerability
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft .NET Framework | >=5.0<=5.0.8 | |
| Microsoft .NET Core SDK | >=2.1<=2.1.28 | |
| Microsoft .NET Core SDK | >=3.1<=3.1.17 | |
| PowerShell Core | >=7.0<7.0.7 | |
| PowerShell Core | >=7.1<7.1.4 | |
| Visual Studio Professional 2017 | >=15.0<=15.9 | |
| Visual Studio Professional 2019 | >=16.0<=16.10 | |
| Microsoft Visual Studio 2019 for Mac | =8.10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2021-26423?
The severity of CVE-2021-26423 is high with a CVSS score of 7.5.
Which software versions are affected by CVE-2021-26423?
CVE-2021-26423 affects Microsoft .NET versions 5.0 and earlier, Microsoft .NET Core versions 2.1 and 3.1, Microsoft PowerShell Core versions 7.0 and 7.1, and Microsoft Visual Studio versions 15.0 to 15.9 and 16.0 to 16.10.
What is the vulnerability description of CVE-2021-26423?
CVE-2021-26423 is a denial of service vulnerability in .NET Core and Visual Studio.
How can I fix CVE-2021-26423?
To fix CVE-2021-26423, it is recommended to update to the latest patched versions of the affected software.
Where can I find more information about CVE-2021-26423?
You can find more information about CVE-2021-26423 in the Microsoft Security Guidance Advisory for CVE-2021-26423: [link](https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26423)
- agent/type
- agent/first-publish-date
- agent/title
- agent/references
- agent/remedy
- agent/severity
- agent/event
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/author
- agent/tags
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/microsoft
- canonical/microsoft .net framework
- version/microsoft .net framework/5.0
- version/microsoft .net framework/5.0.8
- canonical/microsoft .net core sdk
- version/microsoft .net core sdk/2.1
- version/microsoft .net core sdk/2.1.28
- version/microsoft .net core sdk/3.1
- version/microsoft .net core sdk/3.1.17
- canonical/powershell core
- version/powershell core/7.0
- version/powershell core/7.1
- canonical/visual studio professional 2017
- version/visual studio professional 2017/15.0
- version/visual studio professional 2017/15.9
- canonical/visual studio professional 2019
- version/visual studio professional 2019/16.0
- version/visual studio professional 2019/16.10
- canonical/microsoft visual studio 2019 for mac
- version/microsoft visual studio 2019 for mac/8.10