A remote code execution vulnerability exists when the Microsoft .NET Framework fails to validate input properly. An attacker who successfully exploited this vulnerability could take control of an affected system.

This security update addresses the vulnerability by correcting the way that .NET Framework handles high-load/high-density network connections. To learn more about this vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2018-8360. Important.

This security update resolves an information disclosure vulnerability in Microsoft .NET Framework that could allow an attacker to access information in multi-tenant environments.

Learn how we guard against cyber threats: Microsoft Security. Resolves a remote code execution vulnerability that exists when Microsoft .NET Framework does not validate input correctly.

Microsoft has released security bulletin MS15-048. Learn more about how to obtain the fixes that are included in this security bulletin: For individual, small business, and organizational users, use the Windows automatic updating feature to install the fixes from Microsoft Update.

This security update addresses the vulnerability by correcting how .NET Framework validates untrusted input. To learn more about this vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2018-8421. Important.

Learn how we guard against cyber threats: Microsoft Security. Resolves a vulnerability in .NET Framework that could allow Remote Code Execution. Also resolves a vulnerability in certain .NET Framework APIs that parse URLs.

Resolves a remote code execution vulnerability that exists when Microsoft .NET Framework does not validate input correctly.

Release Channel. Available. Next Step. Windows Update and Microsoft Update. Yes. None. This update will be downloaded and installed automatically from Windows Update.

Release Date: February 11, 2020. Version: .NET Framework 3.5 and 4.8. This update for Windows 10 Version 1903 and Windows Server 1903 RTM and Windows 10 , version 1909 and Windows Server, version 1909 includes cumulative reliability improvements in .NET 3.5 and 4.8.