CVE-2019-0613
CVE-2019-0613
Vexday Risk Score
8Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 15.4%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
06 Mar 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A remote code execution vulnerability exists in .NET Framework and Visual Studio software when the software fails to check the source markup of a file.An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user, aka '.NET Framework and Visual Studio Remote Code Execution Vulnerability'.
Affected products
Microsoft · Microsoft .NET Framework 2.0Microsoft · Microsoft .NET Framework 3.0Microsoft · Microsoft .NET Framework 3.5Microsoft · Microsoft .NET Framework 3.5.1Microsoft · Microsoft .NET Framework 4.5.2Microsoft · Microsoft .NET Framework 4.6Microsoft · Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2Microsoft · Microsoft .NET Framework 4.6/4.6.1/4.6.2Microsoft · Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2Microsoft · Microsoft .NET Framework 4.7.1/4.7.2Microsoft · Microsoft .NET Framework 4.7.2Microsoft · Microsoft .NET Framework 4.7/4.7.1/4.7.2Microsoft · Microsoft Visual StudioMicrosoft · Microsoft Visual Studio 2017