1. Home
  2. Mapping Frameworks
  3. Known Exploited Vulnerabilities Home
  4. Microsoft .NET Framework Information Disclosure Vulnerability

Known Exploited Vulnerabilities CVE-2024-29059

Microsoft .NET Framework contains an information disclosure vulnerability that exposes the ObjRef URI to an attacker, ultimately enabling remote code execution.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name Notes
CVE-2024-29059 Microsoft .NET Framework Information Disclosure Vulnerability exploitation_technique T1068 Exploitation for Privilege Escalation
Comments
This information disclosure vulnerability allows an attacker to gain access to ObjRef URI, which can be leveraged to facilitate remote code execution and privilege escalation.
References
  1. https://github.com/codewhitesec/HttpRemotingObjRefLeak
CVE-2024-29059 Microsoft .NET Framework Information Disclosure Vulnerability primary_impact T1059 Command and Scripting Interpreter
Comments
This information disclosure vulnerability allows an attacker to gain access to ObjRef URI, which can be leveraged to facilitate remote code execution and privilege escalation.
References
  1. https://github.com/codewhitesec/HttpRemotingObjRefLeak