Latest microsoft asp.net core Vulnerabilities

CVE-2024-21404
.NET Denial of Service Vulnerability
Microsoft Visual Studio 2022=17.8
Microsoft .NET 6.0
Microsoft .NET 8.0
Microsoft Visual Studio 2022=17.6
Microsoft .NET 7.0
ubuntu/dotnet6<6.0.127-0ubuntu1~22.04.1
and 14 more
CVE-2024-21386
.NET Denial of Service Vulnerability
Microsoft Visual Studio 2022=17.8
Microsoft Visual Studio 2022=17.6
Microsoft ASP.NET Core=6.0
Microsoft ASP.NET Core=8.0
Microsoft ASP.NET Core=7.0
nuget/Microsoft.AspNetCore.App.Runtime.win-x86>=8.0.0<=8.0.1
and 50 more
CVE-2023-36038
ASP.NET Core Denial of Service Vulnerability
Microsoft Visual Studio 2022=17.4
Microsoft Visual Studio 2022=17.2
Microsoft ASP.NET Core=8.0
Microsoft Visual Studio 2022=17.7
Microsoft .NET 8.0
Microsoft Visual Studio 2022>=17.2<17.2.22
and 13 more
CVE-2023-36558
ASP.NET Core - Security Feature Bypass Vulnerability
Microsoft ASP.NET Core=7.0
Microsoft ASP.NET Core=8.0
Microsoft .NET 8.0
nuget/Microsoft.AspNetCore.Components>=6.0.0<=6.0.24
nuget/Microsoft.AspNetCore.Components>=7.0.0<=7.0.13
nuget/Microsoft.AspNetCore.Components=8.0.0-rc.2.23480.2
and 18 more
CVE-2023-44487
- Rapid Reset HTTP/2 vulnerability
Microsoft Windows 11=21H2
Microsoft Windows 11=21H2
Microsoft Windows Server 2022
Microsoft Windows Server 2022
Microsoft Windows 11=22H2
Microsoft Windows 11=22H2
and 555 more
CVE-2023-35391
ASP.NET Core SignalR and Visual Studio Information Disclosure Vulnerability
Microsoft ASP.NET Core=2.1
Microsoft .NET 7.0
Microsoft .NET 6.0
=17.2
=2.1
=17.4
and 11 more
CVE-2023-38180
Microsoft .NET Core and Visual Studio Denial-of-Service Vulnerability
Microsoft .NET Core and Visual Studio
nuget/Microsoft.AspNetCore.Server.Kestrel.Transport.Sockets<=2.1.39
nuget/Microsoft.AspNetCore.Server.Kestrel.Transport.Libuv<=2.1.39
nuget/Microsoft.AspNetCore.App.Runtime.win-x86>=6.0.0<=6.0.20
nuget/Microsoft.AspNetCore.App.Runtime.win-x64>=6.0.0<=6.0.20
nuget/Microsoft.AspNetCore.App.Runtime.win-arm64>=6.0.0<=6.0.20
and 27 more
CVE-2021-43877
ASP.NET Core and Visual Studio Elevation of Privilege Vulnerability
=3.1
=5.0
=6.0
=16.7
=16.9
=16.11
and 8 more
CVE-2021-34532
ASP.NET Core and Visual Studio Information Disclosure Vulnerability
Microsoft ASP.NET Core>=2.1<=2.1.2
Microsoft ASP.NET Core>=3.1<=3.1.17
Microsoft ASP.NET Core>=5.0<=5.0.8
Microsoft Visual Studio 2019>=16.0<=16.10
Microsoft Visual Studio 2019 Macos=8.10
CVE-2021-1723
ASP.NET Core and Visual Studio Denial of Service Vulnerability
>=3.1<=3.1.10
>=5.0<=5.0.1
>=16.0<=16.8
=32
=33
Microsoft ASP.NET Core>=3.1<=3.1.10
and 4 more
CVE-2020-1045
Microsoft ASP.NET Core Security Feature Bypass Vulnerability
nuget/Microsoft.AspNetCore.Http<2.1.22
nuget/Microsoft.AspNetCore.App.Runtime.win-arm64>=3.1.5<3.1.8
nuget/Microsoft.AspNetCore.App.Runtime.win-x86>=3.1.0<3.1.8
nuget/Microsoft.AspNetCore.App.Runtime.win-x64>=3.1.0<3.1.8
nuget/Microsoft.AspNetCore.App.Runtime.win-arm>=3.1.0<3.1.8
nuget/Microsoft.AspNetCore.App.Runtime.osx-x64>=3.1.0<3.1.8
and 35 more
CVE-2020-1597
ASP.NET Core Denial of Service Vulnerability
nuget/Microsoft.AspNetCore.App.Runtime.win-x86>=3.1.0<3.1.7
nuget/Microsoft.AspNetCore.App.Runtime.win-x64>=3.1.0<3.1.7
nuget/Microsoft.AspNetCore.App.Runtime.win-arm64>=3.1.0<3.1.7
nuget/Microsoft.AspNetCore.App.Runtime.win-arm>=3.1.0<3.1.7
nuget/Microsoft.AspNetCore.App.Runtime.osx-x64>=3.1.0<3.1.7
nuget/Microsoft.AspNetCore.App.Runtime.linux-x64>=3.1.0<3.1.7
and 13 more
CVE-2020-1161
Microsoft ASP.NET Core=3.1
Microsoft Visual Studio 2017>=15.1<=15.9
Microsoft Visual Studio 2019>=16.0<=16.5
CVE-2020-0603
A remote code execution vulnerability exists in ASP.NET Core software when the software fails to handle objects in memory.An attacker who successfully exploited the vulnerability could run arbitrary c...
redhat/aspnet core<3.0.1
redhat/aspnet core<3.1.1
Microsoft ASP.NET Core=2.1
Microsoft ASP.NET Core=3.0
Microsoft ASP.NET Core=3.1
Redhat Enterprise Linux=8.0
and 1 more
CVE-2020-0602
A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka 'ASP.NET Core Denial of Service Vulnerability'.
redhat/aspnet core<3.0.1
redhat/aspnet core<3.1.1
Microsoft ASP.NET Core=2.1
Microsoft ASP.NET Core=3.0
Microsoft ASP.NET Core=3.1
Redhat Enterprise Linux=8.0
and 1 more
CVE-2019-1302
An elevation of privilege vulnerability exists when a ASP.NET Core web application, created using vulnerable project templates, fails to properly sanitize web requests, aka 'ASP.NET Core Elevation Of ...
Microsoft ASP.NET Core=2.1
Microsoft ASP.NET Core=2.2
Microsoft ASP.NET Core=3.0
CVE-2019-1075
Microsoft ASP.NET Core=2.1
Microsoft ASP.NET Core=2.2
CVE-2019-0982
A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka 'ASP.NET Core Denial of Service Vulnerability'.
Microsoft ASP.NET Core=2.1
Microsoft ASP.NET Core=2.2
CVE-2019-0815
A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka 'ASP.NET Core Denial of Service Vulnerability'.
Microsoft ASP.NET Core=2.2
CVE-2019-0548
A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka "ASP.NET Core Denial of Service Vulnerability." This affects ASP.NET Core 2.2, ASP.NET Core 2.1. This CV...
Microsoft ASP.NET Core=2.1
Microsoft ASP.NET Core=2.2
CVE-2019-0564
The methods for sending and receiving data on a WebSocket accept a CancellationToken, but previously did not implement actual support for cancellation. Activating the cancellation token would result i...
Microsoft ASP.NET Core=2.1
CVE-2018-8416
A tampering vulnerability exists when .NET Core improperly handles specially crafted files, aka ".NET Core Tampering Vulnerability." This affects .NET Core 2.1.
Microsoft ASP.NET Core=2.1
CVE-2018-8292
An information disclosure vulnerability exists in .NET Core when authentication information is inadvertently exposed in a redirect, aka ".NET Core Information Disclosure Vulnerability." This affects ....
Microsoft ASP.NET Core=1.0
Microsoft ASP.NET Core=1.1
Microsoft ASP.NET Core=2.1
Microsoft Powershell Core=6.0
CVE-2018-8409
A denial of service vulnerability exists when System.IO.Pipelines improperly handles requests, aka "System.IO.Pipelines Denial of Service." This affects .NET Core 2.1, System.IO.Pipelines, ASP.NET Cor...
Microsoft .NET Core>=2.1<2.1.4
Microsoft ASP.NET Core>=2.1<2.1.4
Microsoft System.io.pipelines=4.5.0
CVE-2018-8356
A security feature bypass vulnerability exists when Microsoft .NET Framework components do not correctly validate certificates, aka ".NET Framework Security Feature Bypass Vulnerability." This affects...
Microsoft .NET Framework=3.0-sp2
Microsoft Windows Server 2008=sp2
Microsoft .NET Framework=3.5
Microsoft Windows 10
Microsoft Windows 10=1607
Microsoft Windows 10=1703
and 29 more
CVE-2018-8171
Microsoft ASP.NET Core=1.0
Microsoft ASP.NET Core=1.1
Microsoft ASP.NET Core=2.0
Microsoft ASP.NET Model View Controller=5.2
Microsoft Asp.net Webpages=3.2.3

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203