CVE Catalog

CVE-2026-32175

MediumCVSS 4.3
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.71%

49th percentile - higher than 49% of all known CVEs

Summary

A tampering vulnerability exists when .NET Core improperly handles specially crafted files. An attacker who successfully exploited this vulnerability could write arbitrary files and directories to certain locations on a vulnerable system.

Risk Assessment

This vulnerability could lead to unauthorized access to the file system, potentially resulting in data loss or the introduction of malicious software.

Recommendation

It is recommended to apply the security update to ensure .NET Core properly handles files.

Original NVD description (English source)

A tampering vulnerability exists when .NET Core improperly handles specially crafted files. An attacker who successfully exploited this vulnerability could write arbitrary files and directories to certain locations on a vulnerable system. However, an attacker would have limited control over the destination of the files and directories. To exploit the vulnerability, an attacker must send a specially crafted file to a vulnerable system. The security update fixes the vulnerability by ensuring .NET Core properly handles files.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS