{"id":"CVE-2024-21392","details":".NET and Visual Studio Denial of Service Vulnerability","aliases":["BIT-dotnet-2024-21392","BIT-dotnet-sdk-2024-21392","BIT-powershell-2024-21392","GHSA-5fxj-whcv-crrc"],"modified":"2026-05-10T04:25:39.658145Z","published":"2024-03-12T17:15:49.637Z","related":["ALSA-2024:1308","ALSA-2024:1309","ALSA-2024:1310","ALSA-2024:1311"],"database_specific":{"unresolved_ranges":[{"source":"CPE_FIELD","cpe":"cpe:2.3:a:microsoft:powershell:*:*:*:*:*:*:*:*","extracted_events":[{"introduced":"7.3"},{"fixed":"7.3.12"}]},{"source":"CPE_FIELD","cpe":"cpe:2.3:a:microsoft:powershell:7.4:-:*:*:*:*:*:*","extracted_events":[{"last_affected":"7.4-NA"}]},{"source":"CPE_FIELD","cpe":"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*","extracted_events":[{"introduced":"17.4"},{"fixed":"17.4.17"},{"introduced":"17.6"},{"fixed":"17.6.13"},{"introduced":"17.8"},{"fixed":"17.8.8"},{"introduced":"17.9"},{"fixed":"17.9.3"}]}]},"references":[{"type":"FIX","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21392"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/dotnet/core","events":[{"introduced":"63772e2191a750dd3cafa75914cacdb038c7520c"},{"fixed":"84f52dcca837742fd54b28b96490266cfc4672aa"},{"introduced":"d78b3180414d35d6c7d136db753474e2ae2b33df"},{"fixed":"84f52dcca837742fd54b28b96490266cfc4672aa"}],"database_specific":{"source":"CPE_FIELD","cpe":"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*","extracted_events":[{"introduced":"7.0.0"},{"fixed":"7.0.17"},{"introduced":"8.0.0"},{"fixed":"8.0.3"}]}}],"versions":["v6.0.25","v6.0.26","v6.0.27","v7.0.14","v7.0.15","v7.0.16","v8.0.0","v8.0.1","v8.0.2","v9.0.0-preview.1"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-21392.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}