Vulnerability CVE-2022-41089: Information

Description

.NET Framework Remote Code Execution Vulnerability

Severity: HIGH (7.8) Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Fixed packages

References to Advisories, Solutions, and Tools

1. Affected configurations:

   1. Configuration 1

      cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*

      ---

      Configuration 2

      cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_10:21h1:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_10:21h2:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*

      ---

      Configuration 3

      cpe:2.3:a:microsoft:.net_framework:4.6:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:microsoft:.net_framework:4.6.1:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_7:sp1:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*

      ---

      Configuration 4

      cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:microsoft:.net_framework:4.8.1:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_11:-:*:*:*:*:*:arm64:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_11:-:*:*:*:*:*:x64:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*

      ---

      Configuration 5

      cpe:2.3:a:microsoft:.net_framework:4.8.1:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_10:21h1:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_10:21h2:*:*:*:*:*:*:*

      ---

      Configuration 6

      cpe:2.3:a:microsoft:.net_framework:3.5.1:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:*

      ---

      Configuration 7

      cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*

      ---

      Configuration 8

      cpe:2.3:a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:*

      ---

      cpe:2.3:a:microsoft:.net_framework:3.0:sp2:*:*:*:*:*:*

      ---

      cpe:2.3:a:microsoft:.net_framework:4.6:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_server_2008:sp2:*:*:*:*:*:*:*

      ---

      Configuration 9

      cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*

      ---

      Configuration 10

      cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:arm64:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_11:-:*:*:*:*:*:arm64:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_11:-:*:*:*:*:*:x64:*

      ---

      Running on/with:

      cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*

      ---