CVE-2023-21808: .NET and Visual Studio Remote Code Execution Vulnerability
First published: Tue Feb 14 2023(Updated: )
.NET and Visual Studio Remote Code Execution Vulnerability
Credit: secure@microsoft.com secure@microsoft.com secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft .NET | =6.0.0 | |
| Microsoft .NET | =7.0.0 | |
| Microsoft Visual Studio 2017 | >=15.0<15.9.51 | |
| Microsoft Visual Studio 2019 | >=16.0<16.11.24 | |
| Microsoft Visual Studio 2022 | =17.0.0 | |
| Microsoft Visual Studio 2022 | =17.2 | |
| Microsoft Visual Studio 2022 | =17.4 | |
| Microsoft .NET Framework | =3.5 | |
| Microsoft .NET Framework | =4.8 | |
| Microsoft Windows 10 1607 | ||
| Microsoft Windows 10 1607 | ||
| Microsoft Windows 10 1809 | ||
| Microsoft Windows 10 1809 | ||
| Microsoft Windows 10 20h2 | ||
| Microsoft Windows 10 20h2 | ||
| Microsoft Windows 10 21h2 | ||
| Microsoft Windows 10 21h2 | ||
| Microsoft Windows 10 21h2 | ||
| Microsoft Windows 10 22h2 | ||
| Microsoft Windows 10 22h2 | ||
| Microsoft Windows 10 22h2 | ||
| Microsoft Windows 11 21h2 | ||
| Microsoft Windows 11 21h2 | ||
| Microsoft Windows Server 2016 | ||
| Microsoft Windows Server 2019 | ||
| Microsoft Windows Server 2022 | ||
| Microsoft .NET Framework | =4.7.2 | |
| Microsoft Windows 10 1809 | ||
| Microsoft .NET Framework | =4.8.1 | |
| Microsoft Windows Server 2008 | =r2-sp1 | |
| Microsoft Windows Server 2012 | ||
| Microsoft .NET Framework | =4.6.2 | |
| Microsoft Windows 10 1507 | ||
| Microsoft Windows 10 1507 | ||
| Microsoft Windows 10 1511 | ||
| Microsoft Windows 10 1511 | ||
| Microsoft Windows 10 1703 | ||
| Microsoft Windows 10 1703 | ||
| Microsoft Windows 10 1709 | ||
| Microsoft Windows 10 1709 | ||
| Microsoft Windows 10 1803 | ||
| Microsoft Windows 10 1803 | ||
| Microsoft Windows 10 1909 | ||
| Microsoft Windows 10 1909 | ||
| Microsoft Windows 10 2004 | ||
| Microsoft Windows 10 2004 | ||
| Microsoft Windows 10 21h1 | ||
| Microsoft Windows 10 21h1 | ||
| Microsoft Windows Server 2008 | =sp2 | |
| Microsoft Windows 10 20h2 | ||
| Microsoft Windows 11 22h2 | ||
| Microsoft Windows 11 22h2 | ||
| Microsoft Windows Server 2012 | =r2 | |
| Microsoft .NET Framework | =4.7 | |
| Microsoft .NET Framework | =4.7.1 | |
| Microsoft .NET Framework | =3.5=4.8 | |
| Microsoft .NET Framework | =3.5=4.8.1 | |
| Microsoft .NET Framework | =3.5=4.7.2 | |
| Microsoft Visual Studio 2022 | =17.0 | |
| Microsoft .NET Framework | =3.5=4.8 | |
| Microsoft .NET Framework | =4.6.2 | |
| Microsoft .NET Framework | =3.5=4.8.1 | |
| Microsoft .NET Framework | =4.6.2=4.7=4.7.1=4.7.2 | |
| Microsoft .NET Framework | =3.5=4.8 | |
| Microsoft .NET Framework | =4.8 | |
| Microsoft PowerShell 7.2 | ||
| Microsoft .NET Framework | =3.5=4.8.1 | |
| Microsoft .NET Framework | =3.5=4.8.1 | |
| Microsoft .NET Framework | =3.5=4.8 | |
| Microsoft .NET Framework | =4.6.2=4.7=4.7.1=4.7.2 | |
| Microsoft .NET Framework | =3.5=4.8 | |
| Microsoft .NET Framework | =3.5=4.8 | |
| Microsoft .NET Framework | =3.5=4.8 | |
| Microsoft Visual Studio 2013 | =5 | |
| Microsoft .NET Framework | =3.5=4.7.2 | |
| Microsoft Visual Studio 2022 | =17.4 | |
| Microsoft .NET Framework and 4.6.2 | =3.5 | |
| Microsoft .NET Framework | =3.5=4.8.1 | |
| Microsoft Visual Studio 2019 (includes 16.0 - 16.10) | =16.11 | |
| Microsoft .NET Framework | =4.6.2=4.7=4.7.1=4.7.2 | |
| Microsoft .NET Framework | =4.8 | |
| Microsoft Visual Studio 2017 (includes 15.0 - 15.8) | =15.9 | |
| Microsoft Visual Studio 2015 | =3 | |
| Microsoft .NET Framework | =4.8 | |
| Microsoft .NET 6.0 | ||
| Microsoft .NET 7.0 | ||
| Microsoft .NET Framework | =3.5=4.8.1 | |
| Microsoft Visual Studio 2022 | =17.2 | |
| Microsoft Visual Studio 2022 | =17.0 | |
| All of | ||
| Any of | ||
| Microsoft .NET Framework | =3.5 | |
| Microsoft .NET Framework | =4.8 | |
| Any of | ||
| Microsoft Windows 10 1607 | ||
| Microsoft Windows 10 1607 | ||
| Microsoft Windows 10 1809 | ||
| Microsoft Windows 10 1809 | ||
| Microsoft Windows 10 20h2 | ||
| Microsoft Windows 10 20h2 | ||
| Microsoft Windows 10 21h2 | ||
| Microsoft Windows 10 21h2 | ||
| Microsoft Windows 10 21h2 | ||
| Microsoft Windows 10 22h2 | ||
| Microsoft Windows 10 22h2 | ||
| Microsoft Windows 10 22h2 | ||
| Microsoft Windows 11 21h2 | ||
| Microsoft Windows 11 21h2 | ||
| Microsoft Windows Server 2016 | ||
| Microsoft Windows Server 2019 | ||
| Microsoft Windows Server 2022 | ||
| All of | ||
| Any of | ||
| Microsoft .NET Framework | =3.5 | |
| Microsoft .NET Framework | =4.7.2 | |
| Any of | ||
| Microsoft Windows 10 1607 | ||
| Microsoft Windows 10 1607 | ||
| Microsoft Windows 10 1809 | ||
| Microsoft Windows 10 1809 | ||
| Microsoft Windows 10 1809 | ||
| Microsoft Windows Server 2016 | ||
| Microsoft Windows Server 2019 | ||
| All of | ||
| Any of | ||
| Microsoft .NET Framework | =3.5 | |
| Microsoft .NET Framework | =4.8.1 | |
| Microsoft Windows 10 22h2 | ||
| All of | ||
| Microsoft .NET Framework | =4.8 | |
| Any of | ||
| Microsoft Windows Server 2008 | =r2-sp1 | |
| Microsoft Windows Server 2012 | ||
| All of | ||
| Any of | ||
| Microsoft .NET Framework | =3.5 | |
| Microsoft .NET Framework | =4.6.2 | |
| Any of | ||
| Microsoft Windows 10 1507 | ||
| Microsoft Windows 10 1507 | ||
| Microsoft Windows 10 1511 | ||
| Microsoft Windows 10 1511 | ||
| Microsoft Windows 10 1607 | ||
| Microsoft Windows 10 1607 | ||
| Microsoft Windows 10 1703 | ||
| Microsoft Windows 10 1703 | ||
| Microsoft Windows 10 1709 | ||
| Microsoft Windows 10 1709 | ||
| Microsoft Windows 10 1803 | ||
| Microsoft Windows 10 1803 | ||
| Microsoft Windows 10 1809 | ||
| Microsoft Windows 10 1809 | ||
| Microsoft Windows 10 1909 | ||
| Microsoft Windows 10 1909 | ||
| Microsoft Windows 10 2004 | ||
| Microsoft Windows 10 2004 | ||
| Microsoft Windows 10 20h2 | ||
| Microsoft Windows 10 20h2 | ||
| Microsoft Windows 10 21h1 | ||
| Microsoft Windows 10 21h1 | ||
| Microsoft Windows 10 21h2 | ||
| Microsoft Windows 10 21h2 | ||
| Microsoft Windows 10 22h2 | ||
| Microsoft Windows 10 22h2 | ||
| All of | ||
| Microsoft .NET Framework | =4.6.2 | |
| Microsoft Windows Server 2008 | =sp2 | |
| All of | ||
| Any of | ||
| Microsoft .NET Framework | =3.5 | |
| Microsoft .NET Framework | =4.8.1 | |
| Any of | ||
| Microsoft Windows 10 20h2 | ||
| Microsoft Windows 10 20h2 | ||
| Microsoft Windows 10 20h2 | ||
| Microsoft Windows 10 21h2 | ||
| Microsoft Windows 10 21h2 | ||
| Microsoft Windows 10 21h2 | ||
| Microsoft Windows 10 22h2 | ||
| Microsoft Windows 10 22h2 | ||
| Microsoft Windows 11 21h2 | ||
| Microsoft Windows 11 21h2 | ||
| Microsoft Windows 11 22h2 | ||
| Microsoft Windows 11 22h2 | ||
| Microsoft Windows Server 2022 | ||
| All of | ||
| Microsoft .NET Framework | =4.8 | |
| Any of | ||
| Microsoft Windows Server 2008 | =r2-sp1 | |
| Microsoft Windows Server 2012 | ||
| Microsoft Windows Server 2012 | =r2 | |
| All of | ||
| Any of | ||
| Microsoft .NET Framework | =4.6.2 | |
| Microsoft .NET Framework | =4.7 | |
| Microsoft .NET Framework | =4.7.1 | |
| Microsoft .NET Framework | =4.7.2 | |
| Any of | ||
| Microsoft Windows Server 2008 | =r2-sp1 | |
| Microsoft Windows Server 2012 | ||
| nuget/Microsoft.NetCore.App.Runtime.win-x86 | >=6.0.0<=6.0.13 | 6.0.14 |
| nuget/Microsoft.NetCore.App.Runtime.win-x86 | >=7.0.0<=7.0.2 | 7.0.3 |
| nuget/Microsoft.NetCore.App.Runtime.win-x64 | >=6.0.0<=6.0.13 | 6.0.14 |
| nuget/Microsoft.NetCore.App.Runtime.win-x64 | >=7.0.0<=7.0.2 | 7.0.3 |
| nuget/Microsoft.NetCore.App.Runtime.win-arm64 | >=6.0.0<=6.0.13 | 6.0.14 |
| nuget/Microsoft.NetCore.App.Runtime.win-arm64 | >=7.0.0<=7.0.2 | 7.0.3 |
| nuget/Microsoft.NetCore.App.Runtime.win-arm | >=6.0.0<=6.0.13 | 6.0.14 |
| nuget/Microsoft.NetCore.App.Runtime.win-arm | >=7.0.0<=7.0.2 | 7.0.3 |
| =6.0.0 | ||
| =7.0.0 | ||
| >=15.0<15.9.51 | ||
| >=16.0<16.11.24 | ||
| =17.0 | ||
| =17.2 | ||
| =17.4 | ||
| All of | ||
| Any of | ||
| =3.5 | ||
| =4.8 | ||
| Any of | ||
| All of | ||
| Any of | ||
| =3.5 | ||
| =4.7.2 | ||
| Any of | ||
| All of | ||
| Any of | ||
| =3.5 | ||
| =4.8.1 | ||
| All of | ||
| =4.8 | ||
| Any of | ||
| =r2-sp1 | ||
| All of | ||
| Any of | ||
| =3.5 | ||
| =4.6.2 | ||
| Any of | ||
| All of | ||
| =4.6.2 | ||
| =sp2 | ||
| All of | ||
| Any of | ||
| =3.5 | ||
| =4.8.1 | ||
| Any of | ||
| All of | ||
| =4.8 | ||
| Any of | ||
| =r2-sp1 | ||
| =r2 | ||
| All of | ||
| Any of | ||
| =4.6.2 | ||
| =4.7 | ||
| =4.7.1 | ||
| =4.7.2 | ||
| Any of | ||
| =r2-sp1 | ||
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2023-21808?
.NET and Visual Studio Remote Code Execution Vulnerability.
What is the severity of CVE-2023-21808?
The severity of CVE-2023-21808 is critical and has a CVSS score of 8.4.
Which software is affected by CVE-2023-21808?
The affected software includes .NET Framework 3.5, .NET Framework 4.6.2, Visual Studio 2022, Visual Studio 2019, .NET 7.0, PowerShell 7.2, Visual Studio 2017, Visual Studio 2013, and Visual Studio 2015.
How can I fix CVE-2023-21808?
To fix CVE-2023-21808, update your software to the latest version provided by Microsoft. Refer to the corresponding URLs for each affected software version to download the necessary patches or updates.
Where can I find more information about CVE-2023-21808?
You can find more information about CVE-2023-21808 in the Microsoft Security Response Center (MSRC) update guide using the provided reference link.
- collector/msrc
- agent/type
- agent/first-publish-date
- agent/remedy
- agent/title
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/msrc-cve
- source/Microsoft
- agent/software-canonical-lookup
- collector/nvd-api
- source/NVD
- agent/weakness
- collector/mitre-cve
- source/MITRE
- collector/github-advisory-latest
- source/GitHub
- alias/GHSA-824j-wqm8-89mj
- alias/CVE-2023-21808
- agent/severity
- agent/references
- agent/last-modified-date
- agent/description
- agent/author
- agent/softwarecombine
- agent/tags
- agent/event
- collector/nvd-cve
- collector/github-advisory
- vendor/microsoft
- canonical/microsoft .net
- version/microsoft .net/6.0.0
- version/microsoft .net/7.0.0
- canonical/microsoft visual studio 2017
- version/microsoft visual studio 2017/15.0
- canonical/microsoft visual studio 2019
- version/microsoft visual studio 2019/16.0
- canonical/microsoft visual studio 2022
- version/microsoft visual studio 2022/17.0.0
- version/microsoft visual studio 2022/17.2
- version/microsoft visual studio 2022/17.4
- canonical/microsoft .net framework
- version/microsoft .net framework/3.5
- version/microsoft .net framework/4.8
- canonical/microsoft windows 10 1607
- canonical/microsoft windows 10 1809
- canonical/microsoft windows 10 20h2
- canonical/microsoft windows 10 21h2
- canonical/microsoft windows 10 22h2
- canonical/microsoft windows 11 21h2
- canonical/microsoft windows server 2016
- canonical/microsoft windows server 2019
- canonical/microsoft windows server 2022
- version/microsoft .net framework/4.7.2
- version/microsoft .net framework/4.8.1
- canonical/microsoft windows server 2008
- version/microsoft windows server 2008/r2-sp1
- canonical/microsoft windows server 2012
- version/microsoft .net framework/4.6.2
- canonical/microsoft windows 10 1507
- canonical/microsoft windows 10 1511
- canonical/microsoft windows 10 1703
- canonical/microsoft windows 10 1709
- canonical/microsoft windows 10 1803
- canonical/microsoft windows 10 1909
- canonical/microsoft windows 10 2004
- canonical/microsoft windows 10 21h1
- version/microsoft windows server 2008/sp2
- canonical/microsoft windows 11 22h2
- version/microsoft windows server 2012/r2
- version/microsoft .net framework/4.7
- version/microsoft .net framework/4.7.1
- version/microsoft visual studio 2022/17.0
- canonical/microsoft powershell 7.2
- canonical/microsoft visual studio 2013
- version/microsoft visual studio 2013/5
- canonical/microsoft .net framework and 4.6.2
- version/microsoft .net framework and 4.6.2/3.5
- canonical/microsoft visual studio 2019 (includes 16.0 - 16.10)
- version/microsoft visual studio 2019 (includes 16.0 - 16.10)/16.11
- canonical/microsoft visual studio 2017 (includes 15.0 - 15.8)
- version/microsoft visual studio 2017 (includes 15.0 - 15.8)/15.9
- canonical/microsoft visual studio 2015
- version/microsoft visual studio 2015/3
- canonical/microsoft .net 6.0
- canonical/microsoft .net 7.0
- package-manager/nuget