{"id":"CVE-2025-30399","details":"Untrusted search path in .NET and Visual Studio allows an unauthorized attacker to execute code over a network.","aliases":["BIT-dotnet-2025-30399","BIT-dotnet-sdk-2025-30399","BIT-powershell-2025-30399","GHSA-266m-wp2v-x7mq"],"modified":"2026-04-10T05:24:47.325362Z","published":"2025-06-13T02:15:23.430Z","related":["ALSA-2025:8812","ALSA-2025:8813","ALSA-2025:8814","ALSA-2025:8815","ALSA-2025:8816","ALSA-2025:8817","CGA-vhjg-qq7h-w59c"],"references":[{"type":"ADVISORY","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-30399"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/dotnet/core","events":[{"introduced":"e18becd6171b8eb0eb4ec7ea8a0280cacfcee36b"},{"fixed":"0ca80a2ac73534f2c80121edbae705f2638db77d"},{"introduced":"d78b3180414d35d6c7d136db753474e2ae2b33df"},{"fixed":"0ca80a2ac73534f2c80121edbae705f2638db77d"}],"database_specific":{"versions":[{"introduced":"9.0.0"},{"fixed":"9.0.6"},{"introduced":"8.0.0"},{"fixed":"8.0.17"}]}},{"type":"GIT","repo":"https://github.com/powershell/powershell","events":[{"introduced":"1393d167f54466ec60c547b56f0c4d8326da7dc8"},{"fixed":"744a53a2038056467b6ddeb2045336d79480c4c0"},{"introduced":"713e77f15f63bae9f23fb02045c7843ad6a8769b"},{"fixed":"411d5fee10110d9881a909804f9d4eb1a06052ea"}],"database_specific":{"versions":[{"introduced":"7.4"},{"fixed":"7.4.11"},{"introduced":"7.5"},{"fixed":"7.5.2"}]}}],"versions":["v10.0.0-preview.1","v10.0.0-preview.2","v10.0.0-preview.3","v10.0.0-preview.4","v6.0.36","v7.4.0","v7.4.1","v7.4.2","v7.4.3","v7.4.4","v7.4.5","v7.4.7","v7.4.8","v7.4.9","v8.0.11","v8.0.12","v8.0.13","v8.0.14","v8.0.15","v8.0.16","v9.0.0","v9.0.1","v9.0.2","v9.0.3","v9.0.4","v9.0.5"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-30399.json","unresolved_ranges":[{"events":[{"introduced":"17.8.0"},{"fixed":"17.8.22"}]},{"events":[{"introduced":"17.10.0"},{"fixed":"17.10.16"}]},{"events":[{"introduced":"17.12.0"},{"fixed":"17.12.9"}]},{"events":[{"introduced":"17.14.0"},{"fixed":"17.14.5"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}