CNNVD-202509-1090 Information
CNNVD ID
CNNVD-202509-1090
Related CVE
- CNNVD Published: 2025-09-08
Description (Chinese)
Microsoft Visual Studio和Microsoft .NET都是美国微软(Microsoft)公司的产品。Microsoft Visual Studio是一款开发工具套件系列产品,也是一个基本完整的开发工具集,它包括了整个软件生命周期中所需要的大部分工具。Microsoft .NET是一个致力于敏捷软件开发、快速应用开发、平台无关性和网络透明化的软件框架。 Microsoft .NET和Microsoft Visual Studio存在安全漏洞,该漏洞源于msdia140.dll存在整数溢出和堆缓冲区溢出。
Description (English)
Microsoft Victoria and Microsoft .NET are products of Microsoft America. Microsoft Vital Studio is a product of a development tool package series and a basic complete development tool set that includes most of the tools needed throughout the software life cycle. Microsoft NET is a software framework dedicated to agile software development, fast-track application development, platform irrelevance and network transparency. There is a security gap between Microsoft, NET and Microsoft Visa Studio, which stems from the presence of a whole number of spills and a pile of buffers.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
微软
Published
2025-09-08
Last Modified
2026-02-24
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21172 https://www.herodevs.com/vulnerability-directory/cve-2025-21172
Patch
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21172
Share on: