5.7
CVE-2025-55248
- EPSS 0.68%
- Veröffentlicht 14.10.2025 17:00:59
- Zuletzt bearbeitet 23.10.2025 15:01:44
- Quelle secure@microsoft.com
- CVE-Watchlists
- Unerledigt
.NET, .NET Framework, and Visual Studio Information Disclosure Vulnerability
Inadequate encryption strength in .NET, .NET Framework, Visual Studio allows an authorized attacker to disclose information over a network.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ .Net Framework Version4.6.2
Microsoft ≫ Windows Server 2008 Versionr2 Updatesp1 HwPlatformx64
Microsoft ≫ Windows Server 2012 Version-
Microsoft ≫ Windows Server 2012 Versionr2
Microsoft ≫ Windows Server 2012 Version-
Microsoft ≫ Windows Server 2012 Versionr2
Microsoft ≫ .Net Framework Version4.7
Microsoft ≫ Windows Server 2008 Versionr2 Updatesp1 HwPlatformx64
Microsoft ≫ Windows Server 2012 Version-
Microsoft ≫ Windows Server 2012 Versionr2
Microsoft ≫ Windows Server 2012 Version-
Microsoft ≫ Windows Server 2012 Versionr2
Microsoft ≫ .Net Framework Version4.7.1
Microsoft ≫ Windows Server 2008 Versionr2 Updatesp1 HwPlatformx64
Microsoft ≫ Windows Server 2012 Version-
Microsoft ≫ Windows Server 2012 Versionr2
Microsoft ≫ Windows Server 2012 Version-
Microsoft ≫ Windows Server 2012 Versionr2
Microsoft ≫ .Net Framework Version4.7.2
Microsoft ≫ Windows Server 2008 Versionr2 Updatesp1 HwPlatformx64
Microsoft ≫ Windows Server 2012 Version-
Microsoft ≫ Windows Server 2012 Versionr2
Microsoft ≫ Windows Server 2012 Version-
Microsoft ≫ Windows Server 2012 Versionr2
Microsoft ≫ .Net Framework Version4.6.2
Microsoft ≫ Windows Server 2008 Version- Updatesp2 HwPlatformx64
Microsoft ≫ Windows Server 2008 Version- Updatesp2 HwPlatformx86
Microsoft ≫ Windows Server 2008 Version- Updatesp2 HwPlatformx86
Microsoft ≫ .Net Framework Version3.5.1
Microsoft ≫ .Net Framework Version3.5 Update-
Microsoft ≫ .Net Framework Version4.8.1
Microsoft ≫ .Net Framework Version3.5 Update-
Microsoft ≫ Windows 10 1809 HwPlatformx64
Microsoft ≫ Windows 10 1809 HwPlatformx86
Microsoft ≫ Windows 10 21h2
Microsoft ≫ Windows 10 22h2
Microsoft ≫ Windows Server 2019
Microsoft ≫ Windows Server 2022
Microsoft ≫ Windows 10 1809 HwPlatformx86
Microsoft ≫ Windows 10 21h2
Microsoft ≫ Windows 10 22h2
Microsoft ≫ Windows Server 2019
Microsoft ≫ Windows Server 2022
Microsoft ≫ .Net Framework Version4.8
Microsoft ≫ Windows 10 1809 HwPlatformx64
Microsoft ≫ Windows 10 1809 HwPlatformx86
Microsoft ≫ Windows 10 21h2
Microsoft ≫ Windows 10 22h2
Microsoft ≫ Windows Server 2019
Microsoft ≫ Windows Server 2022
Microsoft ≫ Windows 10 1809 HwPlatformx86
Microsoft ≫ Windows 10 21h2
Microsoft ≫ Windows 10 22h2
Microsoft ≫ Windows Server 2019
Microsoft ≫ Windows Server 2022
Microsoft ≫ .Net Framework Version3.5 Update-
Microsoft ≫ Windows 10 1607 HwPlatformx64
Microsoft ≫ Windows 10 1607 HwPlatformx86
Microsoft ≫ Windows 10 1809 HwPlatformx64
Microsoft ≫ Windows 10 1809 HwPlatformx86
Microsoft ≫ Windows Server 2016
Microsoft ≫ Windows Server 2019
Microsoft ≫ Windows 10 1607 HwPlatformx86
Microsoft ≫ Windows 10 1809 HwPlatformx64
Microsoft ≫ Windows 10 1809 HwPlatformx86
Microsoft ≫ Windows Server 2016
Microsoft ≫ Windows Server 2019
Microsoft ≫ .Net Framework Version4.7.2
Microsoft ≫ Windows 10 1607 HwPlatformx64
Microsoft ≫ Windows 10 1607 HwPlatformx86
Microsoft ≫ Windows 10 1809 HwPlatformx64
Microsoft ≫ Windows 10 1809 HwPlatformx86
Microsoft ≫ Windows Server 2016
Microsoft ≫ Windows Server 2019
Microsoft ≫ Windows 10 1607 HwPlatformx86
Microsoft ≫ Windows 10 1809 HwPlatformx64
Microsoft ≫ Windows 10 1809 HwPlatformx86
Microsoft ≫ Windows Server 2016
Microsoft ≫ Windows Server 2019
Microsoft ≫ .Net Framework Version3.5 Update-
Microsoft ≫ Windows Server 2008 Version- Updatesp2 HwPlatformx64
Microsoft ≫ Windows Server 2008 Version- Updatesp2 HwPlatformx86
Microsoft ≫ Windows Server 2012 Version-
Microsoft ≫ Windows Server 2012 Versionr2
Microsoft ≫ Windows Server 2008 Version- Updatesp2 HwPlatformx86
Microsoft ≫ Windows Server 2012 Version-
Microsoft ≫ Windows Server 2012 Versionr2
Microsoft ≫ .Net Framework Version3.0 Updatesp2
Microsoft ≫ Windows Server 2008 Version- Updatesp2 HwPlatformx64
Microsoft ≫ Windows Server 2008 Version- Updatesp2 HwPlatformx86
Microsoft ≫ Windows Server 2008 Version- Updatesp2 HwPlatformx86
Microsoft ≫ Visual Studio 2022 Version >= 17.10.0 < 17.10.20
Microsoft ≫ Visual Studio 2022 Version >= 17.12.0 < 17.12.13
Microsoft ≫ Visual Studio 2022 Version >= 17.14.0 < 17.14.17
Microsoft ≫ .Net Framework Version4.8
Microsoft ≫ Windows 10 1607 HwPlatformx64
Microsoft ≫ Windows 10 1607 HwPlatformx86
Microsoft ≫ Windows Server 2008 Versionr2 Updatesp1 HwPlatformx64
Microsoft ≫ Windows Server 2012 Version-
Microsoft ≫ Windows Server 2012 Versionr2
Microsoft ≫ Windows Server 2016
Microsoft ≫ Windows 10 1607 HwPlatformx86
Microsoft ≫ Windows Server 2008 Versionr2 Updatesp1 HwPlatformx64
Microsoft ≫ Windows Server 2012 Version-
Microsoft ≫ Windows Server 2012 Versionr2
Microsoft ≫ Windows Server 2016
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.68% | 0.476 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.7 | 2.1 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N
|
| secure@microsoft.com | 4.8 | 1.2 | 3.6 |
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N
|
CWE-326 Inadequate Encryption Strength
The product stores or transmits sensitive data using an encryption scheme that is theoretically sound, but is not strong enough for the level of protection required.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55248