External control of file name or path in .NET, Visual Studio, and Build Tools for Visual Studio allows an authorized attacker to perform spoofing over a network.
Metrics
Affected Vendors & Products
References
History
Thu, 10 Jul 2025 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Apple
Apple macos Linux Linux linux Kernel Microsoft Microsoft .net Microsoft build Tools Microsoft visual Studio 2022 Microsoft windows |
|
CPEs | cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:* cpe:2.3:a:microsoft:build_tools:*:*:*:*:*:visual_studio:*:* cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:* cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* |
|
Vendors & Products |
Apple
Apple macos Linux Linux linux Kernel Microsoft Microsoft .net Microsoft build Tools Microsoft visual Studio 2022 Microsoft windows |
Thu, 15 May 2025 06:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Redhat rhel Eus
|
|
CPEs | cpe:/a:redhat:enterprise_linux:9 cpe:/a:redhat:rhel_eus:9.4 cpe:/o:redhat:enterprise_linux:10.0 |
|
Vendors & Products |
Redhat rhel Eus
|
Wed, 14 May 2025 16:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Wed, 14 May 2025 14:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Redhat
Redhat enterprise Linux |
|
Weaknesses | CWE-290 | |
CPEs | cpe:/a:redhat:enterprise_linux:8 | |
Vendors & Products |
Redhat
Redhat enterprise Linux |
|
References |
| |
Metrics |
threat_severity
|
threat_severity
|
Tue, 13 May 2025 21:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | External control of file name or path in .NET, Visual Studio, and Build Tools for Visual Studio allows an authorized attacker to perform spoofing over a network. | |
Title | .NET, Visual Studio, and Build Tools for Visual Studio Spoofing Vulnerability | |
Weaknesses | CWE-73 | |
References |
| |
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: microsoft
Published:
Updated: 2025-07-08T16:02:35.745Z
Reserved: 2025-02-12T19:23:29.269Z
Link: CVE-2025-26646

Updated: 2025-05-14T15:58:20.799Z

Status : Analyzed
Published: 2025-05-13T22:15:20.493
Modified: 2025-07-10T14:54:17.283
Link: CVE-2025-26646
