Primary

Context

.NET, .NET Framework, and Visual Studio Denial-of-Service Vulnerability

Vulnerability

Patched

A denial-of-service vulnerability has been identified in .NET, .NET Framework, and Visual Studio. This issue arises from a loop with an unreachable exit condition, creating an infinite loop that can be exploited by an unauthorized attacker to disrupt service over a network. The vulnerability affects multiple versions of the .NET Framework, as well as .NET 8.0 and 10.0, depending on the operating system.

Impact

Exploitation of this vulnerability leads to a significant denial-of-service condition, causing affected applications to become unresponsive or unavailable.

Remediation

Users can apply the security update for this vulnerability, which is available through the Microsoft Update Catalog. Specific update details can be found in the Microsoft Knowledge Base articles linked in the 'Security Updates' section.

Added: Apr 14, 2026, 7:06 PM

Updated: Apr 14, 2026, 7:06 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.7

remediation

7.7

relevance

5.9

threat

0.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.7

remediation

7.7

relevance

5.9

threat

0.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

.NET, .NET Framework, and Visual Studio Denial-of-Service Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Microsoft .NET

Microsoft .NET Framework

Microsoft Visual Studio

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating