CVE-2026-32203

High

Published: 14 April 2026

Published

14 April 2026

Modified

06 May 2026

KEV Added

—

Patch

—

CVSS Score 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS Score 0.0023 45.8th percentile

Risk Priority 15 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2026-32203 is a high-severity Improper Input Validation (CWE-20) vulnerability in Microsoft .Net. Its CVSS base score is 7.5 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Application or System Exploitation (T1499.004); ranked at the 45.8th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-16 (Memory Protection).

Threat & Defense at a Glance

What attackers do: exploitation maps to Application or System Exploitation (T1499.004). What defenders deploy: see the NIST 800-53 controls recommended below.

Threat & Defense Details

Mitigating Controls (NIST 800-53 r5)AI

SI-2 Flaw Remediation good match

prevent

Timely flaw remediation through patching directly addresses and eliminates the stack-based buffer overflow vulnerability as advised by Microsoft Security Response Center.

SI-10 Information Input Validation good match

prevent

Information input validation at network interfaces prevents exploitation of improper input handling leading to stack-based buffer overflows.

SI-16 Memory Protection good match

prevent

Memory protection safeguards such as stack canaries and DEP prevent unauthorized code execution from stack-based buffer overflows causing denial of service.

MITRE ATT&CK Enterprise TechniquesAI

T1499.004 Application or System Exploitation Impact

Adversaries may exploit software vulnerabilities that can cause an application or system to crash and deny availability to users.

attack.mitre.org →

Why these techniques?

Remote stack buffer overflow (CWE-121) with AV:N and A:H impact directly enables T1499.004 Application or System Exploitation to crash the .NET/Visual Studio process or service.

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

NVD Description

Stack-based buffer overflow in .NET and Visual Studio allows an unauthorized attacker to deny service over a network.

Deeper analysisAI

CVE-2026-32203 is a stack-based buffer overflow vulnerability affecting .NET and Visual Studio. Published on 2026-04-14T18:17:27.700, it carries a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H) and maps to CWE-20 (Improper Input Validation) and CWE-121 (Stack-based Buffer Overflow).

An unauthorized attacker can exploit this vulnerability remotely over a network with low attack complexity, requiring no privileges or user interaction. Successful exploitation leads to denial of service with high availability impact, but no compromise of confidentiality or integrity.

The Microsoft Security Response Center advisory at https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32203 provides details on patches and mitigation guidance.

Details

CWE(s): CWE-20 CWE-121

Affected Products

microsoft

.net

10.0.0 — 10.0.6 · 8.0.0 — 8.0.26 · 9.0.0 — 9.0.15

microsoft

visual studio 2022

17.12.0 — 17.12.19 · 17.14.0 — 17.14.30

microsoft

visual studio 2026

18.4.0 — 18.4.4

CVEs Like This One

CVE-2026-26171Same product: Apple Macos

CVE-2026-26127Same product: Apple Macos

CVE-2026-32178Same product: Apple Macos

CVE-2025-21171Same product: Apple Macos

CVE-2026-21218Same product: Apple Macos

CVE-2025-21172Same product: Apple Macos

CVE-2026-33116Same product: Apple Macos

CVE-2026-7967Same product: Apple Macos

CVE-2026-5915Same product: Apple Macos

CVE-2026-5884Same product: Apple Macos

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32203
Vendor Advisory · secure@microsoft.com