Apr 2026: .NET Framework Denial of Service Vulnerability
CVE-2026-32226 Published on April 14, 2026
.NET Framework Denial of Service Vulnerability
Concurrent execution using shared resource with improper synchronization ('race condition') in .NET Framework allows an unauthorized attacker to deny service over a network.
Weakness Type
What is a Race Condition Vulnerability?
The program contains a code sequence that can run concurrently with other code, and the code sequence requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence that is operating concurrently.
CVE-2026-32226 has been classified to as a Race Condition vulnerability or weakness.
Products Associated with CVE-2026-32226
stack.watch emails you whenever new vulnerabilities are published in Microsoft Net or Microsoft .NET Framework. Just hit a watch button to start following.
Affected Versions
Microsoft .NET Framework 3.5:- Version 3.5.0 and below 2.0.50727.8982 & 3.0.30729.8976 is affected.
- Version 4.7.0 and below 2.0.50727.9068 & 3.0.30729.9065 & 4.7.4141.0 is affected.
- Version 4.8.0 and below 2.0.50727.9068 & 3.0.30729.9065 & 4.8.4801.0 is affected.
- Version 4.8.1 and below 2.0.50727.9181 & 3.0.30729.9165 & 4.8.9332.0 is affected.
- Version 4.7.0 and below 4.8.4801.0 is affected.
- Version 10.0.0.0 and below 2.0.50727.9068 & 3.0.30729.9065 & 4.7.4141.0 is affected.
- Version 4.8.0 and below 2.0.50727.9181 & 3.0.30729.9165 & 4.8.4801.0 is affected.
- Version 4.8.0.0 and below 2.0.50727.9181 & 3.0.30729.9165 & 4.8.9332.0 is affected.