Login Sign Up

CVE-2024-21392

7.5 HIGH
Denial of Service

📋 TL;DR

This vulnerability in .NET and Visual Studio allows attackers to cause a denial of service by sending specially crafted requests to affected systems. It affects applications built with vulnerable .NET versions and Visual Studio installations. The impact is service unavailability for legitimate users.

💻 Affected Systems

Products:
  • .NET
  • Visual Studio
Versions: Specific versions as listed in Microsoft advisory
Operating Systems: Windows, Linux, macOS
Default Config Vulnerable: ⚠️ Yes
Notes: Applications using affected .NET versions are vulnerable regardless of hosting environment.

📦 What is this software?

.net by Microsoft

View all CVEs affecting .net →

.net by Microsoft

View all CVEs affecting .net →

Powershell by Microsoft

View all CVEs affecting Powershell →

Powershell by Microsoft

View all CVEs affecting Powershell →

Visual Studio 2022 by Microsoft

View all CVEs affecting Visual Studio 2022 →

Visual Studio 2022 by Microsoft

View all CVEs affecting Visual Studio 2022 →

Visual Studio 2022 by Microsoft

View all CVEs affecting Visual Studio 2022 →

Visual Studio 2022 by Microsoft

View all CVEs affecting Visual Studio 2022 →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete service outage for applications, potentially affecting multiple dependent services and causing business disruption.

🟠

Likely Case

Temporary service degradation or crashes requiring application restarts, impacting user experience and availability.

🟢

If Mitigated

Minimal impact with proper network segmentation and monitoring allowing quick detection and response.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Microsoft rates this as 'Exploitation More Likely' in their advisory.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check Microsoft Security Update Guide for specific versions

Vendor Advisory: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21392

Restart Required: Yes

Instructions:

1. Review Microsoft advisory for affected versions. 2. Apply latest security updates for .NET and Visual Studio. 3. Restart affected systems and applications. 4. Test functionality after patching.

🔧 Temporary Workarounds

Network segmentation

all

Restrict network access to affected applications to trusted sources only

Rate limiting

all

Implement request rate limiting to mitigate DoS attempts

🧯 If You Can't Patch

  • Implement strict network access controls and monitoring
  • Deploy Web Application Firewall with DoS protection rules

🔍 How to Verify

Check if Vulnerable:

Check installed .NET and Visual Studio versions against Microsoft advisory

Check Version:

dotnet --version (for .NET) or check Visual Studio About dialog

Verify Fix Applied:

Verify updated versions are installed and test application functionality

📡 Detection & Monitoring

Log Indicators:

  • Application crashes
  • High error rates
  • Unusual request patterns

Network Indicators:

  • Spike in requests to specific endpoints
  • Unusual traffic patterns

SIEM Query:

source="application_logs" AND ("crash" OR "exception" OR "error") AND rate_threshold>100

📊 Metadata

CVE ID: CVE-2024-21392
CVSS v3 Score: 7.5 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CWE: CWE-400
Published: March 12, 2024
Last Updated: November 29, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-21392, you might also want to check these:

CVE-2024-45166 9.8

UCI IDOL2 through version 2.12 contains multiple memory corruption vulnerabilities due to improper i...

Same vulnerability type (CWE-400)
CVE-2025-61303 9.8

This vulnerability in Hatching Triage Sandbox allows malware samples to evade detection by recursive...

Same vulnerability type (CWE-400)
CVE-2024-39462 9.8

This is a Linux kernel memory corruption vulnerability in the BCM2711 DVP clock driver where array b...

Same vulnerability type (CWE-400)