.NET Remote Code Execution Vulnerability
Summary
.NET Remote Code Execution Vulnerability Affected products named by the advisory: Microsoft .NET Framework 4.8 on Windows Server 2016; Microsoft .NET Framework 4.8 on Windows Server 2012; Microsoft .NET Framework 4.8 on Windows Server 2012 R2; Microsoft .NET Framework 3.5 AND 4.8 on Windows Server 2019; and 4 more. Affected products named by the advisory: Microsoft .NET Framework 3.5 AND 4.8 on Windows Server 2022; Microsoft .NET Framework 3.5 AND 4.7.2 on Windows Server 2019; Microsoft .NET Framework 3.5 AND 4.7.2 on Windows Server 2016; Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 on Windows Server 2012.
What this means
In plain English
.NET Remote Code Execution Vulnerability Affected products named by the advisory: Microsoft .NET Framework 4.8 on Windows Server 2016; Microsoft .NET Framework 4.8 on Windows Server 2012; Microsoft .NET Framework 4.8 on Windows Server 2012 R2; Microsoft .NET Framework 3.5 AND 4.8 on Windows Server 2019; and 4 more. Affected products named by the advisory: Microsoft .NET Framework 3.5 AND 4.8 on Windows Server 2022; Microsoft .NET Framework 3.5 AND 4.7.2 on Windows Server 2019; Microsoft .NET Framework 3.5 AND 4.7.2 on Windows Server 2016; Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 on Windows Server 2012. Successful exploitation can let an attacker run code in the security context of the affected service or device.
Vulnerable items
- Microsoft .NET Framework 4.8 on Windows Server 2016 — Windows Server is Microsoft's server operating-system family for identity, application and infrastructure workloads.
- Microsoft .NET Framework 4.8 on Windows Server 2012 R2 — Windows Server is Microsoft's server operating-system family for identity, application and infrastructure workloads.
- Microsoft .NET Framework 3.5 AND 4.8 on Windows Server 2019 — Windows Server is Microsoft's server operating-system family for identity, application and infrastructure workloads.
- Microsoft .NET Framework 3.5 AND 4.8 on Windows Server 2022 — Windows Server is Microsoft's server operating-system family for identity, application and infrastructure workloads.
- Microsoft .NET Framework 3.5 AND 4.7.2 on Windows Server 2019 — Windows Server is Microsoft's server operating-system family for identity, application and infrastructure workloads.
- Microsoft .NET Framework 3.5 AND 4.7.2 on Windows Server 2016 — Windows Server is Microsoft's server operating-system family for identity, application and infrastructure workloads.
- Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 on Windows Server 2012 — Windows Server is Microsoft's server operating-system family for identity, application and infrastructure workloads.
Recommended action
Primary action: update to a vendor-listed fixed release: KB5104032 (build 8.0.29), KB5104033 (build 9.0.18), KB5101007 (build 4.8.4803.0), KB5101009 (build 4.8.4803.0), KB5101011 (build 4.8.4803.0), KB5101008 (build 2.0.50727.9069 & 3.0.30729.9067 & 4.8.4803.0), KB5101010 (build 2.0.50727.9182 & 3.0.30729.9168 & 4.8.4803.0), KB5101006 (build 2.0.50727.9182 & 3.0.30729.9168 & 4.8.4803.0). Vendor mitigation: Install the applicable security update for your platform: KB5104032, KB5104033, KB5101007, KB5101009, KB5101011, KB5101008 (see the Microsoft Update Catalog).
Rewritten locally from the scraped official advisory data above; no generative API is used. The vendor advisory is authoritative.
Affected versions
No affected-version range was extracted from the source record. The vendor advisory is authoritative — check it before change work.
Official advisory · high-confidence parse· fetched 2 hours ago·verify at source
- KB5104032 (build 8.0.29)
- KB5104033 (build 9.0.18)
- KB5101007 (build 4.8.4803.0)
- KB5101009 (build 4.8.4803.0)
- KB5101011 (build 4.8.4803.0)
- KB5101008 (build 2.0.50727.9069 & 3.0.30729.9067 & 4.8.4803.0)
- KB5101010 (build 2.0.50727.9182 & 3.0.30729.9168 & 4.8.4803.0)
- KB5101006 (build 2.0.50727.9182 & 3.0.30729.9168 & 4.8.4803.0)
Official advisory · high-confidence parse· fetched 2 hours ago·verify at source
Mitigation checklist
- Install the applicable security update for your platform: KB5104032, KB5104033, KB5101007, KB5101009, KB5101011, KB5101008 (see the Microsoft Update Catalog).
Official advisory · high-confidence parse· fetched 2 hours ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.