Latest microsoft powershell Vulnerabilities

CVE-2024-0057
NET, .NET Framework, and Visual Studio Security Feature Bypass Vulnerability
Microsoft .NET Framework=3.5=4.8.1
Microsoft .NET Framework=2.0
Microsoft .NET Framework=3.5=4.8.1
Microsoft .NET Framework=4.8
Microsoft .NET Framework=4.8
Microsoft .NET Framework=3.5=4.7.2
and 128 more
CVE-2023-48795
Prefix Truncation Attacks in SSH Specification (Terrapin Attack)
pip/paramiko>=2.5.0<3.4.0
go/golang.org/x/crypto<0.17.0
rust/russh<0.40.2
Apple macOS Sonoma<14.4
Openbsd Openssh<9.6
Putty Putty<0.80
and 128 more
CVE-2023-36013
PowerShell Information Disclosure Vulnerability
Microsoft PowerShell 7.2
Microsoft PowerShell 7.3
Microsoft PowerShell>=7.2<7.2.17
Microsoft PowerShell>=7.3<7.3.10
CVE-2023-21538
.NET Denial of Service Vulnerability
Microsoft .NET=6.0.0
Microsoft PowerShell=7.2
Fedoraproject Fedora=36
Fedoraproject Fedora=37
Microsoft PowerShell 7.2
Microsoft .NET 6.0
CVE-2022-41121
Windows Graphics Component Elevation of Privilege Vulnerability
Microsoft Windows 7
Microsoft Windows RT 8.1
Microsoft Windows 7
Microsoft Windows Server 2012
Microsoft Windows Server 2012
Microsoft Windows 11=21H2
and 61 more
CVE-2022-41076
PowerShell Remote Code Execution Vulnerability
Microsoft PowerShell=7.2
Microsoft PowerShell=7.3
Microsoft Windows 10
Microsoft Windows 10=20h2
Microsoft Windows 10=21h1
Microsoft Windows 10=21h2
and 16 more
CVE-2022-34716
.NET Spoofing Vulnerability
redhat/rh-dotnet31-dotnet<0:3.1.422-1.el7_9
redhat/rh-dotnet60-dotnet<0:6.0.108-1.el7_9
redhat/dotnet3.1<0:3.1.422-1.el8_6
redhat/dotnet6.0<0:6.0.108-1.el8_6
redhat/dotnet6.0<0:6.0.108-1.el9_0
Microsoft .NET>=6.0.0<6.0.8
and 65 more
CVE-2022-23267
.NET and Visual Studio Denial of Service Vulnerability
nuget/Microsoft.AspNetCore.App.Runtime.win-x86>=6.0.0<6.0.5
nuget/Microsoft.AspNetCore.App.Runtime.win-x64>=6.0.0<6.0.5
nuget/Microsoft.AspNetCore.App.Runtime.win-arm64>=6.0.0<6.0.5
nuget/Microsoft.AspNetCore.App.Runtime.win-arm>=6.0.0<6.0.5
nuget/Microsoft.AspNetCore.App.Runtime.osx-x64>=6.0.0<6.0.5
nuget/Microsoft.AspNetCore.App.Runtime.osx-arm64>=6.0.0<6.0.5
and 39 more
CVE-2022-26788
PowerShell Elevation of Privilege Vulnerability
Microsoft Windows Server=20H2
Microsoft PowerShell 7.2
Microsoft PowerShell 7.1
Microsoft Windows Server 2016
Microsoft Windows Server 2019
Microsoft Windows 11=21H2
and 54 more
CVE-2022-24512
.NET and Visual Studio Remote Code Execution Vulnerability
Microsoft Visual Studio 2019 (includes 16.0 - 16.8)=16.9
Microsoft Visual Studio 2019 (includes 16.0 – 16.6)=16.7
Microsoft PowerShell 7.0
Microsoft .NET Core=3.1
Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11
Microsoft .NET 6.0
and 130 more
CVE-2021-41355
.NET Core and Visual Studio Information Disclosure Vulnerability
Microsoft .NET=5.0
Microsoft PowerShell>=7.1<7.1.5
Microsoft Visual Studio 2019>=16.0<=16.11
CVE-2020-8927
A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a "one-shot" decompression request to a script can trigger a crash, which happe...
ubuntu/brotli<1.0.9-1
ubuntu/brotli<1.0.3-1ubuntu1~16.04.2
ubuntu/brotli<1.0.3-1ubuntu1.3
ubuntu/brotli<1.0.7-6ubuntu0.1
<1.0.8
=9.0
and 42 more
CVE-2020-0951
Windows Defender Application Control Security Feature Bypass Vulnerability
>=7.0<7.0.8
>=7.1<7.1.5
=7.0.8
=1607
=1607
=1709
and 26 more
CVE-2020-1108
A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests, aka '.NET Core & .NET Framework Denial of Service Vulnerability'.
Microsoft .NET=5.0-preview1
Microsoft .NET=5.0-preview2
Microsoft .NET=5.0-preview3
Microsoft .NET Core>=2.1<=2.1.18
Microsoft .NET Core>=3.0<=3.1.4
Microsoft .NET Framework=2.0-sp2
and 47 more

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203