CVE-2026-47304 is a .NET Security Feature Bypass Vulnerability caused by improper verification of a cryptographic signature. Microsoft says the authentication feature could be bypassed, allowing impersonation. The CVSS v3.1 base score is 8.1 (High) with a temporal score of 7.1; the vector is NETWORK, with HIGH attack complexity, NO privileges required, and NO user interaction, and the impacts are HIGH for confidentiality, integrity, and availability. Microsoft reports no public disclosure and no known exploitation; exploit code maturity is UNPROVEN. Because this is a network-reachable issue with no authentication or user interaction required, it is relevant to enterprise environments where affected .NET components are exposed to untrusted networks. Highlights: - CVSS scores: Base 8.1 - Temporal 7.1 - Exploit status & code maturity: Publicly Disclosed: No; Exploited: No; Exploit Code Maturity: UNPROVEN. - Impact: Security Feature Bypass; confidentiality, integrity, and availability impacts are all HIGH. - Exploitation likelihood: Exploitation Less Likely; network vector with HIGH attack complexity, NO privileges required, and NO user interaction, but no active exploitation reported. - Severity for enterprise: High technical severity, with higher relevance for network-exposed .NET services because exploitation can occur remotely without user interaction; no affected products were listed in the source data. - Patch status: available; customer action required. Affected systems: - No products listed in source data.