CVE-2023-32032

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Jun 14, 2023
Updated: May 29, 2024
CWE ID 20

Summary

CVE-2023-32032 is an elevation of privilege vulnerability affecting both .NET and Visual Studio. Maliciously crafted files or websites can exploit this issue to run arbitrary code with elevated privileges, leading to significant security risks. The vulnerability occurs due to insufficient input validation, allowing attackers to manipulate the software's behavior. Successful exploitation could result in unauthorized access, data theft, or system compromise. Microsoft recommends updating to the latest versions of .NET and Visual Studio to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Visual Studio 2022
  • Microsoft .NET Framework

Affected Vendors

  • Microsoft