A high-severity vulnerability CVE-2025-24043, remote code execution (RCE) through improper cryptographic signature validation in the SOS debugging extension. The vulnerability affects critical .NET diagnostic packages including dotnet-sos, dotnet-dump, and dotnet-debugger-extensions, which are integral to .NET Core application debugging workflows. According to Juan Hoyos, the flaw resides in the SOS debugging extension’s failure to validate cryptographic […]
The post Microsoft WinDbg RCE Vulnerability Let Attackers Execute Arbitrary Code Remotely appeared first on Cyber Security News.
This article has been indexed from Cyber Security News