The United States Cybersecurity and Infrastructure Security Agency (CISA) has added a newly patched security hole in Microsoft’s.NET and Visual Studio products to its list of Known Exploited Vulnerabilities (KEV), citing active exploitation.
The high-severity bug, identified as CVE-2023-38180 (CVSS score: 7.5), is related to a situation of denial-of-service (DoS) affecting.NET and Visual Studio.
Microsoft fixed it as part of their August 2023 Patch Tuesday updates, which were released earlier this week, marking it with a “Exploitation More Likely” evaluation.
While the particular nature of the exploitation is unknown, Microsoft has confirmed the existence read more CISA Adds Microsoft .NET Vulnerability to KEV Catalog Due to Active Exploitation.
Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the latest threats, breaches, and solutions.