This update resolves an information disclosure vulnerability in Microsoft .NET Framework that could allow an attacker to access information in multi-tenant environments. The vulnerability is caused when .NET Framework is used in high-load/high-density network connections in which content from one stream can blend into another stream.
To exploit the vulnerability, an attacker who can access one tenant in a high-load/high-density environment could potentially trigger multi-tenanted data exposure from one customer to another.
This security update addresses the vulnerability by correcting the way that .NET Framework handles high-load/high-density network connections.
To learn more about this vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2018-8360.