Jun 2026: .NET Tampering Vulnerability
CVE-2026-45491 Published on June 9, 2026
.NET Tampering Vulnerability
Improper link resolution before file access ('link following') in .NET allows an unauthorized attacker to perform tampering locally.
Weakness Type
What is an insecure temporary file Vulnerability?
The software attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.
CVE-2026-45491 has been classified to as an insecure temporary file vulnerability or weakness.
Products Associated with CVE-2026-45491
Want to know whenever a new CVE is published for Microsoft Net? stack.watch will email you.
Affected Versions
Microsoft .NET 10.0:- Version 10.0.0 and below 10.0.9 is affected.
- Version 8.0 and below 8.0.28 is affected.
- Version 8.0.0 and below 8.0.28 is affected.
- Version 9.0.0 and below 9.0.17 is affected.