Skip to main content

CWE-166

Improper Handling of Missing Special Element

2 CVEs Avg CVSS 7.5 MITRE
0
CRITICAL
2
HIGH
0
MEDIUM
0
LOW
0
POC
0
KEV

Monthly

CVE-2026-21218 NuGet HIGH PATCH This Week

.NET applications are vulnerable to spoofing attacks due to improper validation of a required security element, allowing unauthenticated remote attackers to forge or manipulate application data over the network. This vulnerability affects multiple .NET versions and currently has no available patch, exposing organizations to authentication bypass and data integrity risks. The attack requires no user interaction and can be exploited directly from the network.

.NET .Net
NVD
CVSS 3.1
7.5
EPSS
0.0%
CVE-2024-38091 HIGH PATCH This Week

Microsoft WS-Discovery Denial of Service Vulnerability. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Microsoft Windows 10 1507 Windows 10 1607 Windows 10 1809 +11
NVD
CVSS 3.1
7.5
EPSS
1.9%
EPSS 0% CVSS 7.5
HIGH PATCH This Week

.NET applications are vulnerable to spoofing attacks due to improper validation of a required security element, allowing unauthenticated remote attackers to forge or manipulate application data over the network. This vulnerability affects multiple .NET versions and currently has no available patch, exposing organizations to authentication bypass and data integrity risks. The attack requires no user interaction and can be exploited directly from the network.

.NET .Net
NVD
EPSS 2% CVSS 7.5
HIGH PATCH This Week

Microsoft WS-Discovery Denial of Service Vulnerability. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Microsoft Windows 10 1507 +13
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy