Multiple vulnerabilities in Microsoft Developer Tools

Description

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, spoof user interface, gain privileges, execute arbitrary code.

Below is a complete list of vulnerabilities:

1. A denial of service vulnerability in .NET can be exploited remotely to cause denial of service.
2. A denial of service vulnerability in ASP.NET Core can be exploited remotely to cause denial of service.
3. An elevation of privilege vulnerability in .NET can be exploited remotely to gain privileges.
4. A remote code execution vulnerability in Windows System Image Manager Assessment and Deployment Kit (ADK) can be exploited remotely to execute arbitrary code.

Fiches de renseignement originales

• CVE-2026-26127

• CVE-2026-26130
• CVE-2026-26131
• CVE-2026-25166

Produits associés

• Microsoft-Windows
• Microsoft-Windows-Server
• Microsoft-Windows-10
• Microsoft-Windows-11
• .NET
• Microsoft-Windows-Server-2022

Liste CVE

• CVE-2026-25166
  critical
• CVE-2026-26127
  critical
• CVE-2026-26130
  critical
• CVE-2026-26131
  critical

Liste KB

• 5081276
• 5081277
• 5081278

En savoir plus

Découvrez les statistiques de la propagation des vulnérabilités dans votre région statistics.securelist.com