Fixed Intel

CISA Known Exploited Vulnerability

This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.

Remediation Deadline: Aug 30, 2023

CVE-2023-38180

High
EPSS 0.9%CISA KEV
Microsoft/.NET Core and Visual Studio

Description

Microsoft .NET Core and Visual Studio contain an unspecified vulnerability that allows for denial-of-service (DoS).

EPSS — Exploit Probability

0.9%

Higher than 75.1% of all CVEs

Required Action

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2023-38180; https://nvd.nist.gov/vuln/detail/CVE-2023-38180

Risk Assessment

ELEVATED
In CISA KEV

Details

Severity
High
EPSS
0.9%
CISA KEV
Yes
Ransomware
Unknown
Articles
0

Timeline

Published

Aug 9, 2023

Added to KEV

Aug 9, 2023

Remediation Due

Aug 30, 2023

Affected Product

Microsoft

.NET Core and Visual Studio

View all Microsoft CVEs

External Links

NVD (NIST)CVE DetailsMITRE CVE