virus logo Endpoint Vulnerability

Microsoft .NET Framework CVE-2024-29059 Information Disclosure Vulnerability

description-logoDescription

Information disclosure via error messages exposing ObjRef URI, potentially enabling remote code execution, affecting .NET Framework 3.5, 4.7-4.8 on Windows 10 1607/1809 and Windows Server 2019.

description-logoOutbreak Alert

Threat Actors are targeting and actively exploiting a Microsoft .NET Framework information disclosure vulnerability (CVE-2024-29059) that exposes the ObjRef URI to an attacker, ultimately enabling remote code execution.

View the full Outbreak Alert Report

affected-products-logoAffected Applications

Windows Server 2008
Windows Server 2012
Windows Server 2016
Windows Server 2019
Windows Server 2022
Windows 10
Windows 11

Version Updates

Date Version Status Detail
2025-02-05 1.00815
New
 Windows Server 2008,Windows Server 2012,Windows Server 2016,Windows Server 2019,Windows Server 2022,Windows 10,Windows 11

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-29059
ID 6067
Created Feb 04, 2025
Description
Updated		 Jan 10, 2026
CVE ID
Tags Microsoft .NET Framework Information Disclosure Threat Signal
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor Microsoft
Patch auto
Application Windows Server 2008 , Windows Server 2012 , Windows Server 2016 , Windows Server 2019 , Windows Server 2022 , Windows 10 , Windows 11