EUVD-2021-1835

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

EUVD-2021-1835 details an information disclosure vulnerability in ASP.NET Core and Visual Studio.

Reporter	Title	Published	Views	Family All 69
ALT Linux	Security fix for the ALT Linux 10 package dotnet-bootstrap-5.0 version 5.0.14-alt1	21 Feb 202200:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 9 package dotnet-aspnetcore-5.0 version 5.0.14-alt1	22 Mar 202200:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 10 package dotnet-bootstrap-3.1 version 3.1.22-alt1	21 Feb 202200:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 9 package dotnet-bootstrap-5.0 version 5.0.14-alt1	22 Mar 202200:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 10 package dotnet-aspnetcore-3.1 version 3.1.22-alt1	21 Feb 202200:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 9 package dotnet-aspnetcore-3.1 version 3.1.22-alt1	22 Mar 202200:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 9 package dotnet-bootstrap-3.1 version 3.1.22-alt1	22 Mar 202200:00	–	altlinux
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities may affect IBM Robotic Process Automation	4 May 202218:53	–	ibm
Tenable Nessus	Alibaba Cloud Linux 3 : 0062: .NET Core 3.1 (ALINUX3-SA-2021:0062)	14 May 202500:00	–	nessus
Tenable Nessus	CentOS 8 : .NET Core 3.1 (CESA-2021:3142)	16 Aug 202100:00	–	nessus

[
  {
    "enisaIdVendor": [
      {
        "id": "f78e4e2a-b190-359f-b656-26b63d865d5b",
        "vendor": {
          "name": "Microsoft"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "0128b292-5969-362e-ad69-e94c5d4a5e3e",
        "product": {
          "name": "Visual Studio 2019 for Mac version 8.10"
        },
        "product_version": "8.1.0 <8.10.7"
      },
      {
        "id": "12362f0c-684c-3d56-b4b2-a8fbfbe55e08",
        "product": {
          "name": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6)"
        },
        "product_version": "16.0.0 <16.7.18"
      },
      {
        "id": "ab4bf54e-b761-3a0d-b7d2-f350e6653ae4",
        "product": {
          "name": "Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9)"
        },
        "product_version": "16.10.0 <16.10.5"
      },
      {
        "id": "adb6d89f-2dd7-3966-b149-cfa18bf84258",
        "product": {
          "name": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)"
        },
        "product_version": "16.0 <16.4.25"
      },
      {
        "id": "b75b3fb6-ebbf-32cd-a8db-8838a2f82d6f",
        "product": {
          "name": "ASP.NET Core 3.1"
        },
        "product_version": "3.0 <3.1.18"
      },
      {
        "id": "c582b336-6013-3fcc-9d54-9340c1288678",
        "product": {
          "name": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)"
        },
        "product_version": "15.0.0 <16.9.10"
      },
      {
        "id": "f2c9a771-eaaf-3dca-ab06-37fe7c699619",
        "product": {
          "name": "ASP.NET Core 2.1"
        },
        "product_version": "2.0 <2.1.29"
      },
      {
        "id": "faa9ba89-c97d-3f25-bfb1-57cca5219b43",
        "product": {
          "name": "ASP.NET Core 5.0"
        },
        "product_version": "5.0 <5.0.9"
      }
    ]
  }
]

Source	Link
github	www.github.com/dotnet/aspnetcore/security/advisories/GHSA-q7cg-43mg-qp69
nvd	www.nvd.nist.gov/vuln/detail/CVE-2021-34532
github	www.github.com/dotnet/aspnetcore
portal	www.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34532
access	www.access.redhat.com/errata/RHSA-2021:3148
access	www.access.redhat.com/errata/RHSA-2021:3147
access	www.access.redhat.com/errata/RHSA-2021:3143
access	www.access.redhat.com/errata/RHSA-2021:3142
security	www.security.archlinux.org/CVE-2021-34532
linux	www.linux.oracle.com/cve/CVE-2021-34532.html

07 Oct 2025 00:30Current

6.3Medium risk

Vulners AI Score6.3

CVSS 3.15.5

CVSS 22.1

EPSS0.00266