Description
A tampering vulnerability exists when .NET Core improperly handles specially crafted files. An attacker who successfully exploited this vulnerability could write arbitrary files and directories to certain locations on a vulnerable system. However, an attacker would have limited control over the destination of the files and directories.
To exploit the vulnerability, an attacker must send a specially crafted file to a vulnerable system.
The security update fixes the vulnerability by ensuring .NET Core properly handles files.
Published: 2026-05-12
Score: 4.3 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is a tampering flaw in .NET Core that arises from improper handling of specially crafted files. An attacker who succeeds can cause the system to create or modify files and directories at certain locations, providing a limited ability to write arbitrary data. The flaw falls under CWE‑36, indicating a path traversal or related file‑system manipulation weakness.

Affected Systems

The flaw affects Microsoft .NET 10.0, .NET 8.0, and .NET 9.0, as well as Microsoft Visual Studio 2017 versions 15.9 (15.0‑15.8), Visual Studio 2019 16.11 (16.0‑16.10), Visual Studio 2022 17.12 and 17.14, and Visual Studio 2026 18.5.

Risk and Exploitability

The CVSS score of 4.3 reflects a moderate severity because the attacker cannot freely choose all destination paths, but can still create or alter files in certain locations. The EPSS score is not available, and the vulnerability is not listed in the CISA KEV catalog, suggesting no widespread exploitation data. To exploit the flaw, an attacker must send a specially crafted file to a vulnerable system—most likely via a file‑upload interface or by placing the file locally wherever the application processes it. Once the file reaches the system, the flaw allows the creation of arbitrary files or directories within limited bounds.

Generated by OpenCVE AI on May 12, 2026 at 18:45 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest security update for .NET Core and affiliated Visual Studio releases as available on the Microsoft update guide
  • Update any dependent applications or services that rely on the affected .NET Core or Visual Studio versions to incorporate the fix
  • Restrict or monitor file upload endpoints to prevent the delivery of specially crafted files that could trigger the flaw

Generated by OpenCVE AI on May 12, 2026 at 18:45 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-rg75-q538-x34v Microsoft Security Advisory CVE-2026-32175 – .NET Core Tampering Vulnerability
History

Thu, 28 May 2026 00:15:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

 threat_severity

Moderate

Wed, 20 May 2026 13:15:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*

Wed, 13 May 2026 10:00:00 +0000

Type Values Removed Values Added
First Time appeared Microsoft microsoft Visual Studio 2022
Vendors & Products Microsoft microsoft Visual Studio 2022

Tue, 12 May 2026 20:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 12 May 2026 17:30:00 +0000

Type Values Removed Values Added
Description A tampering vulnerability exists when .NET Core improperly handles specially crafted files. An attacker who successfully exploited this vulnerability could write arbitrary files and directories to certain locations on a vulnerable system. However, an attacker would have limited control over the destination of the files and directories. To exploit the vulnerability, an attacker must send a specially crafted file to a vulnerable system. The security update fixes the vulnerability by ensuring .NET Core properly handles files.
Title .NET Core Tampering Vulnerability
First Time appeared Microsoft
Microsoft .net
Microsoft visual Studio 2017
Microsoft visual Studio 2019
Microsoft visual Studio 2022
Microsoft visual Studio 2026
Weaknesses CWE-36
CPEs cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2026:*:*:*:*:*:*:*:*
Vendors & Products Microsoft
Microsoft .net
Microsoft visual Studio 2017
Microsoft visual Studio 2019
Microsoft visual Studio 2022
Microsoft visual Studio 2026
References
Metrics cvssV3_1

{'score': 4.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C'}

Subscriptions

Microsoft .net Microsoft Visual Studio 2022 Visual Studio 2017 Visual Studio 2019 Visual Studio 2022 Visual Studio 2026
cve-icon MITRE

Status: PUBLISHED

Assigner: microsoft

Published:

Updated: 2026-06-05T16:39:06.272Z

Reserved: 2026-03-11T00:26:53.424Z

Link: CVE-2026-32175

cve-icon Vulnrichment

Updated: 2026-05-12T19:22:44.313Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-12T18:16:58.737

Modified: 2026-05-13T15:34:52.573

Link: CVE-2026-32175

cve-icon Redhat

Severity : Moderate

Publid Date: 2026-05-12T16:59:01Z

Links: CVE-2026-32175 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-13T10:00:10Z

Weaknesses