{"id":"BIT-dotnet-sdk-2026-33116","summary":".NET, .NET Framework, and Visual Studio Denial of Service Vulnerability","details":"Loop with unreachable exit condition ('infinite loop') in .NET, .NET Framework, Visual Studio allows an unauthorized attacker to deny service over a network.","aliases":["BIT-dotnet-2026-33116","CVE-2026-33116","GHSA-37gx-xxp4-5rgx"],"modified":"2026-05-07T09:26:25.159037926Z","published":"2026-05-07T08:39:36.376Z","database_specific":{"cpes":["cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*"],"severity":"High"},"references":[{"type":"WEB","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33116"},{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-33116"}],"affected":[{"package":{"name":"dotnet-sdk","ecosystem":"Bitnami","purl":"pkg:bitnami/dotnet-sdk"},"ranges":[{"type":"SEMVER","events":[{"introduced":"8.0.0"},{"fixed":"8.0.26"},{"introduced":"9.0.0"},{"fixed":"9.0.15"},{"introduced":"10.0.0"},{"fixed":"10.0.6"}]}],"database_specific":{"source":"https://github.com/bitnami/vulndb/tree/main/data/dotnet-sdk/BIT-dotnet-sdk-2026-33116.json"},"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}],"schema_version":"1.7.5"}