Primary

Context

CSLA .NET Remote Code Execution Vulnerability via WcfProxy

Vulnerability

A remote code execution vulnerability has been identified in CSLA .NET framework versions prior to 6.0.0. This issue arises from the use of WcfProxy, which relies on the now-obsolete NetDataContractSerializer (NDCS) for serialization. During the deserialization process, NDCS introduces a risk of executing malicious code. The vulnerability is present in versions 5.5.4 and below.

Impact

Exploitation of this vulnerability allows for remote code execution on the server where the affected CSLA .NET application is running.

Remediation

To address this vulnerability, users should upgrade to CSLA .NET version 6.0.0 or later, where the issue has been resolved. If an upgrade is not possible, WcfProxy should be removed from the data portal configurations in versions prior to 6.0.0.

Added: Dec 9, 2025, 6:23 PM

Updated: Dec 10, 2025, 12:08 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

8.1

remediation

0.0

relevance

1.4

threat

3.3

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

8.1

remediation

0.0

relevance

1.4

threat

3.3

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

CSLA .NET Remote Code Execution Vulnerability via WcfProxy

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating