# CVE-2026-33115

> A remote code execution vulnerability exists in .NET and Visual Studio due to unsafe deserialization in the BinaryFormatter fallback path. An attacker who successfully exploits this vulnerability could execute arbitrary code on the target system. The vulnerability was disclosed as part of the Microsoft April 2026 Patch Tuesday release, which remediated 167 vulnerabilities across Windows, Office, SharePoint, .NET, Defender, Active Directory, Remote Desktop, Azure, Hyper-V, and supporting components. This CVE was rated Critical severity with a CVSS 8.1 base score. Exploitation requires an attack

- **CVSS:** 8.1 (HIGH)
- **EPSS:** 0.1%
- **CWE:** CWE-502

Canonical: https://intel.threadlinqs.com/cve/CVE-2026-33115
Full threat coverage + IOCs via the Threadlinqs MCP server (Purple tier): https://intel.threadlinqs.com/mcp