{ "id": "CVE-2024-30045", "sourceIdentifier": "secure@microsoft.com", "published": "2024-05-14T17:17:17.023", "lastModified": "2025-01-08T18:36:30.457", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [ { "lang": "en", "value": ".NET and Visual Studio Remote Code Execution Vulnerability" }, { "lang": "es", "value": "Vulnerabilidad de ejecuci\u00f3n remota de c\u00f3digo de .NET y Visual Studio" } ], "metrics": { "cvssMetricV31": [ { "source": "secure@microsoft.com", "type": "Primary", "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L", "baseScore": 6.3, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "LOW" }, "exploitabilityScore": 2.8, "impactScore": 3.4 } ] }, "weaknesses": [ { "source": "secure@microsoft.com", "type": "Secondary", "description": [ { "lang": "en", "value": "CWE-122" } ] }, { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "NVD-CWE-noinfo" } ] } ], "configurations": [ { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*", "versionStartIncluding": "7.0.0", "versionEndExcluding": "7.0.19", "matchCriteriaId": "98AEF40E-333C-4B7C-A1A7-522459C01F90" }, { "vulnerable": true, "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*", "versionStartIncluding": "8.0.0", "versionEndExcluding": "8.0.5", "matchCriteriaId": "19A6ED34-B810-42BF-9256-8632F965EBED" }, { "vulnerable": true, "criteria": "cpe:2.3:a:microsoft:powershell:*:*:*:*:*:*:*:*", "versionStartIncluding": "7.4", "versionEndExcluding": "7.4.3", "matchCriteriaId": "7D708FAC-81E3-4E60-B9D9-7C7AA614A503" }, { "vulnerable": true, "criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", "versionStartIncluding": "17.4.0", "versionEndExcluding": "17.4.19", "matchCriteriaId": "A8851D8F-C0FC-4957-846E-BEF69B88B9D6" }, { "vulnerable": true, "criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", "versionStartIncluding": "17.6.0", "versionEndExcluding": "17.6.15", "matchCriteriaId": "24B799F3-962A-4366-9B5C-2F60E2098B7D" }, { "vulnerable": true, "criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", "versionStartIncluding": "17.8.0", "versionEndExcluding": "17.8.10", "matchCriteriaId": "55C50579-44BA-4C6A-9CD5-A71D3D80F4E5" }, { "vulnerable": true, "criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", "versionStartIncluding": "17.9.0", "versionEndExcluding": "17.9.7", "matchCriteriaId": "DA2D642F-B4D4-4B84-ACCA-653201079267" } ] } ] } ], "references": [ { "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30045", "source": "secure@microsoft.com", "tags": [ "Vendor Advisory" ] }, { "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30045", "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Vendor Advisory" ] }, { "url": "https://security.netapp.com/advisory/ntap-20241122-0001/", "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Third Party Advisory" ] } ] }