CVE-2024-43485: .NET and Visual Studio Denial of Service Vulnerability

First published: Mon Sep 30 2024(Updated: )

.NET and Visual Studio Denial of Service Vulnerability

Credit: secure@microsoft.com secure@microsoft.com

Affected Software	Affected Version	How to fix
Microsoft Visual Studio 2022	=17.6	fix available externally
Microsoft Visual Studio 2022	=17.8	fix available externally
Microsoft Visual Studio 2022	=17.10	fix available externally
Microsoft .NET 6.0 installed on Mac OS		fix available externally
Microsoft .NET 8.0 installed on Linux		fix available externally
Microsoft .NET 6.0 installed on Windows		fix available externally
Microsoft .NET 8.0 installed on Mac OS		fix available externally
Microsoft .NET 6.0 installed on Linux		fix available externally
Microsoft .NET 8.0 installed on Windows		fix available externally
nuget/System.Text.Json	>=6.0.0<=6.0.9	6.0.10
nuget/System.Text.Json	>=8.0.0<=8.0.4	8.0.5
All of
Any of
Microsoft .NET	>=6.0.0<6.0.35
Microsoft .NET	>=8.0.0<8.0.10
Any of
Apple macOS
Linux Linux kernel
Microsoft Windows
Microsoft Visual Studio 2022	>=17.6.0<17.6.20
Microsoft Visual Studio 2022	>=17.8.0<17.8.15
Microsoft Visual Studio 2022	>=17.10.0<17.10.8
Microsoft Visual Studio 2022	>=17.11.0<17.11.5
Microsoft PowerShell 7.4		fix available externally

Remedy

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43485

Never miss a vulnerability like this again

Reference Links

agent/title
agent/type
collector/msrc-cve
source/Microsoft
agent/software-canonical-lookup
agent/software-canonical-lookup-request
collector/msrc
agent/weakness
agent/author
collector/launchpad-cve
source/Launchpad
collector/github-advisory-latest
source/GitHub
alias/GHSA-8g4q-xg66-9fp4
alias/CVE-2024-43485
agent/severity
agent/first-publish-date
collector/nvd-cve
source/NVD
collector/usn-cve
source/Ubuntu
agent/description
collector/security-tracker-debian
source/Debian
collector/github-advisory
collector/redhat-bugzilla
source/Red Hat
agent/references
collector/mitre-cve
source/MITRE
collector/nvd-api
agent/remedy
agent/last-modified-date
agent/event
agent/tags
agent/softwarecombine
vendor/microsoft
canonical/microsoft visual studio 2022
version/microsoft visual studio 2022/17.6
version/microsoft visual studio 2022/17.8
version/microsoft visual studio 2022/17.10
version/microsoft visual studio 2022/17.11
canonical/microsoft .net 6.0 installed on mac os
canonical/microsoft .net 8.0 installed on linux
canonical/microsoft .net 6.0 installed on windows
canonical/microsoft .net 8.0 installed on mac os
canonical/microsoft .net 6.0 installed on linux
canonical/microsoft .net 8.0 installed on windows
package-manager/nuget
canonical/microsoft .net
version/microsoft .net/6.0.0
version/microsoft .net/8.0.0
vendor/apple
canonical/apple macos
vendor/linux
canonical/linux linux kernel
canonical/microsoft windows
version/microsoft visual studio 2022/17.6.0
version/microsoft visual studio 2022/17.8.0
version/microsoft visual studio 2022/17.10.0
version/microsoft visual studio 2022/17.11.0
canonical/microsoft powershell 7.4
canonical/microsoft powershell 7.2

CVE-2024-43485: .NET and Visual Studio Denial of Service Vulnerability

Remedy

Never miss a vulnerability like this again

Reference Links

Company

Resources

Contact