This vulnerability resides in the ISymUnmanagedReader interface used by the .NET Framework to parse debugging symbols from WSDL (Web Services Description Language). An attacker can craft a malicious SOAP endpoint. When a .NET 4.0 application attempts to consume this WSDL, the parser executes arbitrary code.
Significant vulnerabilities were identified during the active support lifecycle of .NET 4.0.30319, ranging from remote code execution to authentication bypasses. 1. Remote Code Execution (RCE) microsoft net framework 4.0 v 30319 vulnerabilities
The version number is frequently flagged by security scanners, causing concern for many administrators. However, understanding what this number actually represents is the first step in determining whether your system is truly at risk. The "4.0.30319" Version Confusion — .NET Framework RCE
Running .NET Framework 4.0.30319 in a production environment today is a high-risk endeavor. Since Microsoft no longer issues security updates for this specific version, the primary recommendation is to migrate to a supported version. causing concern for many administrators.
— .NET Framework RCE