Unrated severityNVD Advisory· Published Apr 8, 2025· Updated Feb 13, 2026
ASP.NET Core and Visual Studio Denial of Service Vulnerability
CVE-2025-26682
Description
Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny service over a network.
Affected products
88.0+ 1 more
- (no CPE)range: 8.0
- (no CPE)range: 9.0
- Microsoft/Microsoft Visual Studio 2022 version 17.10v5Range: 17.10.0
- Microsoft/Microsoft Visual Studio 2022 version 17.12v5Range: 17.12.0
- Microsoft/Microsoft Visual Studio 2022 version 17.13v5Range: 17.13.0
- Microsoft/Microsoft Visual Studio 2022 version 17.8v5Range: 17.8.0
Patches
Vulnerability mechanics
References
1- msrc.microsoft.com/update-guide/vulnerability/CVE-2025-26682mitrevendor-advisorypatch
News mentions
0No linked articles in our index yet.