7.5
CVE-2026-32178
- EPSS 2.28%
- Veröffentlicht 14.04.2026 16:57:31
- Zuletzt bearbeitet 30.06.2026 03:18:29
- Quelle secure@microsoft.com
- CVE-Watchlists
- Unerledigt
.NET Spoofing Vulnerability
Improper neutralization of special elements in .NET allows an unauthorized attacker to perform spoofing over a network.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Visual Studio 2022 Version >= 17.12.0 < 17.12.19
Microsoft ≫ Visual Studio 2022 Version >= 17.14.0 < 17.14.30
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.28% | 0.81 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| secure@microsoft.com | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
|
| 0b0ca135-0b70-47e7-9f44-1890c2a1c46c | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
|
CWE-138 Improper Neutralization of Special Elements
The product receives input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could be interpreted as control elements or syntactic markers when they are sent to a downstream component.
Für Zugriff zu Vulnerability Intelligence ist ein VulnDex Zugang erforderlich.
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32178
https://access.redhat.com/errata/RHSA-2026:13280
https://access.redhat.com/errata/RHSA-2026:13281
https://access.redhat.com/errata/RHSA-2026:13282
https://access.redhat.com/errata/RHSA-2026:13283
https://access.redhat.com/errata/RHSA-2026:13693
https://access.redhat.com/errata/RHSA-2026:8467
https://access.redhat.com/errata/RHSA-2026:8468
https://access.redhat.com/errata/RHSA-2026:8469
https://access.redhat.com/errata/RHSA-2026:8470
https://access.redhat.com/errata/RHSA-2026:8471
https://access.redhat.com/errata/RHSA-2026:8472
https://access.redhat.com/errata/RHSA-2026:8473
https://access.redhat.com/errata/RHSA-2026:8474
https://access.redhat.com/errata/RHSA-2026:8475
https://access.redhat.com/errata/RHSA-2026:9077
https://access.redhat.com/errata/RHSA-2026:9080
https://access.redhat.com/errata/RHSA-2026:9205
https://access.redhat.com/security/cve/CVE-2026-32178
https://bugzilla.redhat.com/show_bug.cgi?id=2457781
https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-32178.json