CVE-2024-29059

HIGH 7.5

⚠️ CISA KEV

.NET Framework Information Disclosure Vulnerability

CVSS Score

7.5

EPSS Score

0.0%

EPSS Percentile

0th

.NET Framework Information Disclosure Vulnerability

Vendor	microsoft
Product	microsoft .net framework 4.8
Ecosystems	Windows .NET Azure
Industries	TechnologyEnterprise
Published	Mar 22, 2024
Last Updated	Oct 21, 2025

⚠️ Actively Exploited — Act Now

Get instant alerts for microsoft microsoft .net framework 4.8

This vulnerability is actively exploited in the wild. Set up free real-time alerts so you're first to know about threats like CVE-2024-29059.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

Microsoft / Microsoft .NET Framework 4.8

4.8.0 < 4.8.04690.02

Microsoft / Microsoft .NET Framework 3.5 AND 4.8

4.8.0 < 4.8.04690.02

Microsoft / Microsoft .NET Framework 3.5 AND 4.7.2

4.7.0 < 4.7.04081.03

Microsoft / Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2

4.7.0 < 4.7.04081.03

Microsoft / Microsoft .NET Framework 3.5 AND 4.8.1

4.8.1 < 4.8.09214.01

Microsoft / Microsoft .NET Framework 4.6.2

4.7.0 < 4.7.04081.03

Microsoft / Microsoft .NET Framework 3.5 AND 4.6/4.6.2

10.0.0 < 10.0.10240.20402

Microsoft / Microsoft .NET Framework 2.0 Service Pack 2

2.0.0 < 3.0.50727.8976

Microsoft / Microsoft .NET Framework 3.0 Service Pack 2

3.0.0 < 3.0.50727.8976

Microsoft / Microsoft .NET Framework 3.5

3.5.0 < 3.0.50727.8976

Microsoft / Microsoft .NET Framework 3.5.1

3.5.0 < 3.0.30729.8959

References

NVD ↗ CVE.org ↗ EPSS Data ↗

msrc.microsoft.com: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059 cisa.gov: https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-29059