CVE-2026-26171

| EUVD-2026-22404 HIGH
2026-04-14 microsoft GHSA-w3x6-4m5h-cxqf
Denial Of Service Net 10 0 Net 8 0 Net 9 0
7.5
CVSS 3.1
Temporal: 6.5
Share

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

1
Analysis Generated
Apr 14, 2026 - 19:35 vuln.today

DescriptionNVD

Uncontrolled resource consumption in .NET allows an unauthorized attacker to deny service over a network.

AnalysisAI

Denial-of-service condition in Microsoft .NET Framework 8.0, 9.0, and 10.0 allows unauthenticated remote attackers to exhaust system resources through network-based uncontrolled resource consumption. Affects .NET 8.0 versions prior to 8.0.26, .NET 9.0 versions prior to 9.0.15, and .NET 10.0 versions prior to 10.0.6. …

Sign in for full analysis, threat intelligence, and remediation guidance.

RemediationAI

Within 24 hours: Identify all systems running .NET 8.0 (pre-8.0.26), .NET 9.0 (pre-9.0.15), or .NET 10.0 (pre-10.0.6) via asset inventory and configuration management systems. Within 7 days: Deploy vendor patches to .NET 8.0.26 or later, .NET 9.0.15 or later, and .NET 10.0.6 or later across all development, staging, and production environments; prioritize internet-facing applications. …

Sign in for detailed remediation steps.

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

Sign in - Free

Share

CVE-2026-26171 vulnerability details – vuln.today
Back

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy