CVE-2023-28260 - OpenCVE

.NET DLL Hijacking Remote Code Execution Vulnerability

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Microsoft	.net Powershell Visual Studio Visual Studio 2022

Configuration 1 [-]

OR	cpe:2.3:a:microsoft:.net::::::::
	cpe:2.3:a:microsoft:.net::::::::
	cpe:2.3:a:microsoft:visual_studio_2022::::::::
	cpe:2.3:a:microsoft:visual_studio_2022::::::::
	cpe:2.3:a:microsoft:visual_studio_2022::::::::
	cpe:2.3:a:microsoft:visual_studio_2022::::::::

No data.

References

Link	Providers
https://github.com/dotnet/core/blob/309062100ff65bac1e5628db126bc4deb232a7a5/release-notes/6.0/6.0.16/6.0.16.md#microsoft-security-advisory-cve-2023-28260-net-remote-code-execution-vulnerability
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28260
https://nvd.nist.gov/vuln/detail/CVE-2023-28260
https://www.cve.org/CVERecord?id=CVE-2023-28260

History

No history.

MITRE

Status: PUBLISHED

Assigner: microsoft

Published: 2023-04-11T19:13:56.662Z

Updated: 2024-08-02T12:30:24.683Z

Reserved: 2023-03-13T22:18:32.391Z

Link: CVE-2023-28260

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2023-04-11T21:15:25.493

Modified: 2023-04-18T20:49:57.237

Link: CVE-2023-28260

Redhat

Severity : Important

Publid Date: 2023-04-11T00:00:00Z

Links: CVE-2023-28260 - Bugzilla

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-28260", "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8", "state": "PUBLISHED", "assignerShortName": "microsoft", "dateReserved": "2023-03-13T22:18:32.391Z", "datePublished": "2023-04-11T19:13:56.662Z", "dateUpdated": "2024-08-02T12:30:24.683Z"}, "containers": {"cna": {"title": ".NET DLL Hijacking Remote Code Execution Vulnerability", "datePublic": "2023-04-11T07:00:00+00:00", "affected": [{"vendor": "Microsoft", "product": ".NET 6.0", "cpes": ["cpe:2.3:a:microsoft:.net:6.0.0:*:*:*:*:*:*:*"], "platforms": ["Unknown"], "versions": [{"version": "6.0.0", "lessThan": "6.0.16", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": ".NET 7.0", "cpes": ["cpe:2.3:a:microsoft:.net:7.0.0:*:*:*:*:*:*:*"], "platforms": ["Unknown"], "versions": [{"version": "7.0.0", "lessThan": "7.0.5", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": "Microsoft Visual Studio 2022 version 17.5", "cpes": ["cpe:2.3:a:microsoft:visual_studio:2022:*:*:*:*:*:*:*"], "platforms": ["Unknown"], "versions": [{"version": "17.5.0", "lessThan": "17.5.4", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": "Microsoft Visual Studio 2022 version 17.4", "cpes": ["cpe:2.3:a:microsoft:visual_studio_2022:17.4:*:*:*:*:*:*:*"], "platforms": ["Unknown"], "versions": [{"version": "17.4.0", "lessThan": "17.4.7", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": "Microsoft Visual Studio 2022 version 17.2", "cpes": ["cpe:2.3:a:microsoft:visual_studio_2022:17.2:*:*:*:*:*:*:*"], "platforms": ["Unknown"], "versions": [{"version": "17.2.0", "lessThan": "17.2.15", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": "Microsoft Visual Studio 2022 version 17.0", "cpes": ["cpe:2.3:a:microsoft:visual_studio_2022:17.0:*:*:*:*:*:*:*"], "platforms": ["Unknown"], "versions": [{"version": "17.0.0", "lessThan": "17.0.21", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": "PowerShell 7.3", "cpes": ["cpe:2.3:a:microsoft:powershell:7.3:-:*:*:*:*:*:*"], "platforms": ["Unknown"], "versions": [{"version": "7.3.0", "lessThan": "7.3.4", "versionType": "custom", "status": "affected"}]}, {"vendor": "Microsoft", "product": "PowerShell 7.2", "cpes": ["cpe:2.3:a:microsoft:powershell:7.2:*:*:*:*:*:*:*"], "platforms": ["Unknown"], "versions": [{"version": "7.2.0", "lessThan": "7.2.11", "versionType": "custom", "status": "affected"}]}], "descriptions": [{"value": ".NET DLL Hijacking Remote Code Execution Vulnerability", "lang": "en-US"}], "problemTypes": [{"descriptions": [{"description": "Remote Code Execution", "lang": "en-US", "type": "Impact"}]}], "providerMetadata": {"orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8", "shortName": "microsoft", "dateUpdated": "2024-05-29T01:56:35.458Z"}, "references": [{"name": ".NET DLL Hijacking Remote Code Execution Vulnerability", "tags": ["vendor-advisory"], "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28260"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en-US", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "baseSeverity": "HIGH", "baseScore": 7.8, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C"}}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T12:30:24.683Z"}, "title": "CVE Program Container", "references": [{"name": ".NET DLL Hijacking Remote Code Execution Vulnerability", "tags": ["vendor-advisory", "x_transferred"], "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28260"}]}]}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*", "matchCriteriaId": "5FCFC39D-83CC-4BFA-9BF3-4F7B9675A354", "versionEndExcluding": "6.0.16", "versionStartIncluding": "6.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*", "matchCriteriaId": "45897753-77F8-4ABA-BF4E-E68E851DF330", "versionEndExcluding": "7.0.5", "versionStartIncluding": "7.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", "matchCriteriaId": "06B7E408-A6EC-4556-A535-3F3340F314F7", "versionEndExcluding": "17.0.21", "versionStartIncluding": "17.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", "matchCriteriaId": "78A2B957-0654-45EF-ADE4-EEDA380D4583", "versionEndExcluding": "17.2.15", "versionStartIncluding": "17.2", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", "matchCriteriaId": "6CFF8AF1-4BEE-4CED-ADB5-8B7DE3C6A6E6", "versionEndExcluding": "17.4.7", "versionStartIncluding": "17.4", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*", "matchCriteriaId": "4D305BC5-DF3E-45FE-9421-385D6A1E9EFC", "versionEndExcluding": "17.5.4", "versionStartIncluding": "17.5", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": ".NET DLL Hijacking Remote Code Execution Vulnerability"}], "id": "CVE-2023-28260", "lastModified": "2023-04-18T20:49:57.237", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "secure@microsoft.com", "type": "Primary"}]}, "published": "2023-04-11T21:15:25.493", "references": [{"source": "secure@microsoft.com", "tags": ["Patch", "Vendor Advisory"], "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28260"}], "sourceIdentifier": "secure@microsoft.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"bugzilla": {"description": "dotnet: CWD dll hijack vulnerability", "id": "2185016", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2185016"}, "csaw": false, "cvss3": {"cvss3_base_score": "7.8", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "status": "draft"}, "cwe": "CWE-491", "details": [".NET DLL Hijacking Remote Code Execution Vulnerability", "A vulnerability was found in dotNet. A runtime DLL may be loaded from an unexpected location, resulting in remote code execution."], "name": "CVE-2023-28260", "package_state": [{"cpe": "cpe:/a:redhat:rhel_dotnet:6.0", "fix_state": "Not affected", "package_name": "rh-dotnet60-dotnet", "product_name": ".NET 6.0 on Red Hat Enterprise Linux"}, {"cpe": "cpe:/a:redhat:rhel_dotnet:3.1", "fix_state": "Not affected", "package_name": "rh-dotnet31-dotnet", "product_name": ".NET Core 3.1 on Red Hat Enterprise Linux"}, {"cpe": "cpe:/a:redhat:rhel_dotnet:5.0", "fix_state": "Not affected", "package_name": "rh-dotnet50-dotnet", "product_name": ".NET Core 5.0 on Red Hat Enterprise Linux"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "dotnet3.1", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "dotnet6.0", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "dotnet7.0", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "dotnet6.0", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "dotnet7.0", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2023-04-11T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2023-28260\nhttps://nvd.nist.gov/vuln/detail/CVE-2023-28260\nhttps://github.com/dotnet/core/blob/309062100ff65bac1e5628db126bc4deb232a7a5/release-notes/6.0/6.0.16/6.0.16.md#microsoft-security-advisory-cve-2023-28260-net-remote-code-execution-vulnerability"], "statement": "This issue does not affect Red Hat Enterprise Linux 6, 7, 8 and 9.", "threat_severity": "Important", "upstream_fix": "dotnet 6.0.16, dotnet 7.0.5"}