Critical severity9.8NVD Advisory· Published Sep 13, 2018· Updated Jun 17, 2026
CVE-2018-8421
CVE-2018-8421
Description
A remote code execution vulnerability exists when Microsoft .NET Framework processes untrusted input, aka ".NET Framework Remote Code Execution Vulnerability." This affects Microsoft .NET Framework 4.6, Microsoft .NET Framework 3.5, Microsoft .NET Framework 4.7/4.7.1/4.7.2, Microsoft .NET Framework 3.0, Microsoft .NET Framework 3.5.1, Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2, Microsoft .NET Framework 4.5.2, Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.1/4.7.2, Microsoft .NET Framework 4.7.1/4.7.2, Microsoft .NET Framework 4.7.2, Microsoft .NET Framework 2.0.
Affected products
2- Range: 2.0, 3.0, 3.5, 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2
- Range: 2.0 Service Pack 2 on Windows Server 2008 for 32-bit Systems Service Pack 2
Patches
Vulnerability mechanics
References
3- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8421nvdPatchVendor Advisory
- www.securityfocus.com/bid/105222nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1041636nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.