Rapid7 Vulnerability & Exploit Database

Microsoft CVE-2024-21409: .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

Microsoft CVE-2024-21409: .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

Severity
7
CVSS
(AV:L/AC:M/Au:S/C:C/I:C/A:C)
Published
04/09/2024
Created
04/10/2024
Added
04/09/2024
Modified
10/04/2024

Description

Microsoft CVE-2024-21409: .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

Solution(s)

  • msft-kb5036605-e8fc1986-f983-40b8-ac4b-e8e24cca6618
  • msft-kb5036606-1dcbb711-2763-45d2-bf32-33b3f46bf1b3
  • msft-kb5036612-9613c888-0aa7-4250-aae5-b759122f139a
  • msft-kb5036614-8aa92b04-ac06-4b0e-a21c-b8851aa3125a
  • msft-kb5036631-155dfb93-bd16-4441-b1b7-e41c122f979b
  • msft-kb5036631-1f3ed66b-14dc-435f-9c89-2679af3400c4
  • msft-kb5036631-231d50d0-7f02-4730-9e28-3d23b6befaf1
  • msft-kb5036632-c567ae39-c5ae-44ef-aafb-5517bcc050fa
  • msft-kb5036899-69faac54-5812-4113-a88d-d52fd8acefd1
  • microsoft-windows-windows_server_2016-1607-kb5036899
  • msft-kb5036899-fa8351b7-409a-41b0-831a-98f01401749a
  • msft-kb5036604-826746dc-02ba-4f95-bd6c-1660ad0690c1
  • msft-kb5036604-8f4602f4-3db2-4456-843b-af6cabd57e3f
  • msft-kb5036604-a8d78088-9818-4fd7-9060-57e1a1af46fd
  • msft-kb5036608-2a4b1187-9b5e-497c-a107-ef624a33d254
  • msft-kb5036608-3cdd1551-e207-4a0a-bebc-a0cb2fa5259b
  • msft-kb5036608-4d29c3ae-774e-4ff7-8284-77455dbdf397
  • msft-kb5036610-2ee11ac6-b5c2-4996-af67-8e5d03096ccc
  • msft-kb5036610-5600d50d-aab8-4a51-9409-863c4d08bd1f
  • msft-kb5036610-b6506902-42c2-40a0-9aed-60f20a3643bc

References

  • https://attackerkb.com/topics/cve-2024-21409
  • CVE - 2024-21409
  • 5036604
  • 5036605
  • 5036606
  • 5036607
  • 5036608
  • 5036609
  • 5036610
  • 5036611
  • 5036612
  • 5036613
  • 5036614
  • 5036618
  • 5036619
  • 5036620
  • 5036621
  • 5036631
  • 5036632
  • 5036899
  • 5037033
  • 5037034
  • 5037035
  • 5037036
  • 5037037
  • 5037038
  • 5037039
  • 5037040
  • 5037041
  • 5037127
  • 5037128
  • 5037336
  • 5037337
  • 5037338
View more

insightVM

Advanced vulnerability management analytics and reporting.
Key Features
  • Lightweight Endpoint Agent
  • Live Dashboards
  • Real Risk Prioritization
  • IT-Integrated Remediation Projects
  • Cloud, Virtual, and Container Assessment
  • Integrated Threat Feeds
  • Easy-to-Use RESTful API
  • Automation-Assisted Patching
  • Automated Containment
Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;