Loop with unreachable exit condition ('infinite loop') in .NET, .NET Framework, Visual Studio allows an unauthorized attacker to deny service over a network.
References
| Link | Resource |
|---|---|
| https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33116 | Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
Configuration 2 (hide)
| AND |
|
Configuration 3 (hide)
| AND |
|
Configuration 4 (hide)
| AND |
|
Configuration 5 (hide)
| AND |
|
Configuration 6 (hide)
| AND |
|
Configuration 7 (hide)
| AND |
|
Configuration 8 (hide)
| AND |
|
Configuration 9 (hide)
| AND |
|
History
06 May 2026, 15:19
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33116 - Vendor Advisory | |
| First Time |
Microsoft windows Server 2022
Apple Microsoft windows Server 2012 Microsoft windows 11 26h1 Microsoft windows 10 22h2 Microsoft windows 10 1809 Microsoft windows 10 21h2 Microsoft windows 11 23h2 Apple macos Microsoft windows 11 22h2 Microsoft windows 11 25h2 Microsoft windows Server 2025 Microsoft Microsoft .net Microsoft windows 10 1607 Linux linux Kernel Microsoft .net Framework Linux Microsoft windows Microsoft windows 11 24h2 Microsoft windows Server 2022 23h2 |
|
| CPE | cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:* cpe:2.3:a:microsoft:.net_framework:4.8.1:*:*:*:*:*:*:* cpe:2.3:a:microsoft:.net_framework:4.8:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_11_25h2:-:*:*:*:*:*:arm64:* cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x86:* cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_11_25h2:-:*:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x86:* cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:arm64:* cpe:2.3:o:microsoft:windows_server_2025:-:*:*:*:*:*:x64:* cpe:2.3:a:microsoft:.net_framework:3.5:-:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_server_2022_23h2:-:*:*:*:*:*:x64:* cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_11_23h2:-:*:*:*:*:*:arm64:* cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_11_24h2:-:*:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x86:* cpe:2.3:o:microsoft:windows_11_26h1:-:*:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows_11_26h1:-:*:*:*:*:*:arm64:* cpe:2.3:o:microsoft:windows_10_1607:-:*:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows_11_23h2:-:*:*:*:*:*:x64:* cpe:2.3:o:microsoft:windows_11_22h2:-:*:*:*:*:*:arm64:* cpe:2.3:o:microsoft:windows_10_21h2:-:*:*:*:*:*:x64:* cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:arm64:* cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:arm64:* cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_10_1809:-:*:*:*:*:*:x86:* cpe:2.3:o:microsoft:windows_11_24h2:-:*:*:*:*:*:arm64:* cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows_10_22h2:-:*:*:*:*:*:x64:* |
14 Apr 2026, 18:17
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2026-04-14 18:17
Updated : 2026-05-06 15:19
NVD link : CVE-2026-33116
Mitre link : CVE-2026-33116
CVE.ORG link : CVE-2026-33116
JSON object : View
Products Affected
microsoft
- windows
- windows_10_1607
- .net
- windows_11_25h2
- windows_11_24h2
- windows_10_1809
- windows_11_22h2
- windows_server_2012
- windows_10_22h2
- windows_11_23h2
- windows_11_26h1
- windows_server_2022_23h2
- windows_10_21h2
- windows_server_2022
- .net_framework
- windows_server_2025
linux
- linux_kernel
apple
- macos