- Description
- External control of file name or path in .NET, Visual Studio, and Build Tools for Visual Studio allows an authorized attacker to perform spoofing over a network.
- Source
- secure@microsoft.com
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Primary
- Base score
- 8
- Impact score
- 5.9
- Exploitability score
- 2.1
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
- Severity
- HIGH
- secure@microsoft.com
- CWE-73
- Hype score
- Not currently trending
🔴 URGENT for Ubuntu Users 🔴 A critical .NET spoofing vulnerability (CVE-2025-26646) threatens #Ubuntu 22.04-25.04 systems. Patch dotnet8/dotnet9 runtimes NOW to prevent network-based attacks. 👉 Full patch guide: Read more: 👉 https://t.co/552duO7uLD https://t.co/
@Cezar_H_Linux
26 May 2025
77 Impressions
0 Retweets
4 Likes
0 Bookmarks
0 Replies
0 Quotes
⚠️ Microsoft just dropped a bombshell! CVE-2025-26646 lets sneaky attackers masquerade as legit services via .NET & Visual Studio. Time to lock those filenames down! 🛡️ #Vulnerability #Security #WindowsForum https://t.co/1zDRQvU0Ly
@windowsforum
14 May 2025
8 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🔴 #Microsoft NET, Spoofing Vulnerability, #CVE-2025-26646 (Critical) https://t.co/kTeHXDl8nP
@dailycve
14 May 2025
31 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-26646 External control of file name or path in .NET, Visual Studio, and Build Tools for Visual Studio allows an authorized attacker to perform spoofing over a network. https://t.co/07kDvfGfUt
@CVEnew
13 May 2025
446 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes