7.5
CVE-2026-26171
- EPSS 1.75%
- Veröffentlicht 14.04.2026 16:58:37
- Zuletzt bearbeitet 30.06.2026 03:17:48
- Quelle secure@microsoft.com
- CVE-Watchlists
- Unerledigt
.NET Denial of Service Vulnerability
Uncontrolled resource consumption in .NET allows an unauthorized attacker to deny service over a network.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Powershell Version >= 7.5 < 7.5.6
Microsoft ≫ Powershell Version >= 7.6 < 7.6.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.75% | 0.751 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| secure@microsoft.com | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
| 0b0ca135-0b70-47e7-9f44-1890c2a1c46c | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
CWE-400 Uncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource.
CWE-611 Improper Restriction of XML External Entity Reference
The product processes an XML document that can contain XML entities with URIs that resolve to documents outside of the intended sphere of control, causing the product to embed incorrect documents into its output.
CWE-776 Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')
The product uses XML documents and allows their structure to be defined with a Document Type Definition (DTD), but it does not properly control the number of recursive definitions of entities.
Für Zugriff zu Vulnerability Intelligence ist ein VulnDex Zugang erforderlich.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-26171
https://access.redhat.com/errata/RHSA-2026:13280
https://access.redhat.com/errata/RHSA-2026:13281
https://access.redhat.com/errata/RHSA-2026:13282
https://access.redhat.com/errata/RHSA-2026:13283
https://access.redhat.com/errata/RHSA-2026:13693
https://access.redhat.com/errata/RHSA-2026:8467
https://access.redhat.com/errata/RHSA-2026:8468
https://access.redhat.com/errata/RHSA-2026:8469
https://access.redhat.com/errata/RHSA-2026:8470
https://access.redhat.com/errata/RHSA-2026:8471
https://access.redhat.com/errata/RHSA-2026:8472
https://access.redhat.com/errata/RHSA-2026:8473
https://access.redhat.com/errata/RHSA-2026:8474
https://access.redhat.com/errata/RHSA-2026:8475
https://access.redhat.com/errata/RHSA-2026:9077
https://access.redhat.com/errata/RHSA-2026:9080
https://access.redhat.com/errata/RHSA-2026:9205
https://access.redhat.com/security/cve/CVE-2026-26171
https://bugzilla.redhat.com/show_bug.cgi?id=2457739
https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-26171.json