CVE-2026-32175

MEDIUM(4.3)

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Risk Signal Score11/100 — NIEDRIG

CVSS 4.3 — Mittel

EPSS-Score

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

4.3

Technische Schwere

Beschreibung

A tampering vulnerability exists when .NET Core improperly handles specially crafted files. An attacker who successfully exploited this vulnerability could write arbitrary files and directories to certain locations on a vulnerable system. However, an attacker would have limited control over the destination of the files and directories. To exploit the vulnerability, an attacker must send a specially crafted file to a vulnerable system. The security update fixes the vulnerability by ensuring .NET Core properly handles files.

GitHub Advisories

GHSA-rg75-q538-x34vHIGH

Microsoft Security Advisory CVE-2026-32175 – .NET Core Tampering Vulnerability

nuget/Microsoft.NetCore.App.Runtime.win-arm→ 8.0.27

GitHub Advisory

Referenzen

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32175