CVE-2019-0613

CVE-2019-0613

EPSS 15.4%

A remote code execution vulnerability exists in .NET Framework and Visual Studio software when the software fails to check the source markup of a file.An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user, aka '.NET Framework and Visual Studio Remote Code Execution Vulnerability'.

Affected products

Microsoft · Microsoft .NET Framework 2.0 Microsoft · Microsoft .NET Framework 3.0 Microsoft · Microsoft .NET Framework 3.5 Microsoft · Microsoft .NET Framework 3.5.1 Microsoft · Microsoft .NET Framework 4.5.2 Microsoft · Microsoft .NET Framework 4.6 Microsoft · Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 Microsoft · Microsoft .NET Framework 4.6/4.6.1/4.6.2 Microsoft · Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2 Microsoft · Microsoft .NET Framework 4.7.1/4.7.2 Microsoft · Microsoft .NET Framework 4.7.2 Microsoft · Microsoft .NET Framework 4.7/4.7.1/4.7.2 Microsoft · Microsoft Visual Studio Microsoft · Microsoft Visual Studio 2017

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0613 http://www.securityfocus.com/bid/106872