Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Fedora: Security Advisory for dotnet7.0 (FEDORA-2023-25112489ab)

πŸ—“οΈΒ 20 Aug 2023Β 00:00:00Reported byΒ Copyright (C) 2023 Greenbone AGTypeΒ 
openvas
Β openvasπŸ”—Β plugins.openvas.orgπŸ‘Β 20Β Views

The remote host is missing an update for the 'dotnet7.0' package(s) announced via the FEDORA-2023-25112489ab advisory. .NET is a fast, lightweight and modular platform for creating cross platform applications that work on Linux, macOS and Windows. It particularly focuses on creating console applications, web applications, and micro-services

Show more

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Related
Refs
Code
ReporterTitlePublishedViews
Family
Oracle linux		.NET 7.0 security, bug fix, and enhancement update
15 Aug 202300:00
–oraclelinux
Oracle linux		.NET 7.0 security, bug fix, and enhancement update
16 Aug 202300:00
–oraclelinux
Oracle linux		.NET 6.0 security, bug fix, and enhancement update
15 Aug 202300:00
–oraclelinux
Oracle linux		.NET 6.0 security, bug fix, and enhancement update
16 Aug 202300:00
–oraclelinux
Tenable Nessus		RHEL 9 : .NET 7.0 (RHSA-2023:4642)
14 Aug 202300:00
–nessus
Tenable Nessus		Oracle Linux 9 : .NET / 7.0 (ELSA-2023-4642)
16 Aug 202300:00
–nessus
Tenable Nessus		AlmaLinux 9 : .NET 7.0 (ALSA-2023:4642)
15 Aug 202300:00
–nessus
Tenable Nessus		RHEL 9 : .NET 6.0 (RHSA-2023:4639)
14 Aug 202300:00
–nessus
Tenable Nessus		RHEL 8 : .NET 6.0 (RHSA-2023:4640)
14 Aug 202300:00
–nessus
Tenable Nessus		Oracle Linux 8 : .NET / 6.0 (ELSA-2023-4645)
15 Aug 202300:00
–nessus
Rows per page
# SPDX-FileCopyrightText: 2023 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.884684");
  script_version("2023-10-12T05:05:32+0000");
  script_xref(name:"CISA", value:"Known Exploited Vulnerability (KEV) catalog");
  script_xref(name:"URL", value:"https://www.cisa.gov/known-exploited-vulnerabilities-catalog");
  script_cve_id("CVE-2023-35390", "CVE-2023-38180");
  script_tag(name:"cvss_base", value:"7.2");
  script_tag(name:"cvss_base_vector", value:"AV:L/AC:L/Au:N/C:C/I:C/A:C");
  script_tag(name:"last_modification", value:"2023-10-12 05:05:32 +0000 (Thu, 12 Oct 2023)");
  script_tag(name:"severity_vector", value:"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2023-08-08 18:33:00 +0000 (Tue, 08 Aug 2023)");
  script_tag(name:"creation_date", value:"2023-08-20 01:10:34 +0000 (Sun, 20 Aug 2023)");
  script_name("Fedora: Security Advisory for dotnet7.0 (FEDORA-2023-25112489ab)");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2023 Greenbone AG");
  script_family("Fedora Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/fedora", "ssh/login/rpms", re:"ssh/login/release=FC37");

  script_xref(name:"Advisory-ID", value:"FEDORA-2023-25112489ab");
  script_xref(name:"URL", value:"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NWVZFKTLNMNKPZ755EMRYIA6GHFOWGKY");

  script_tag(name:"summary", value:"The remote host is missing an update for the 'dotnet7.0'
  package(s) announced via the FEDORA-2023-25112489ab advisory.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");

  script_tag(name:"insight", value:".NET is a fast, lightweight and modular platform for creating
cross platform applications that work on Linux, macOS and Windows.

It particularly focuses on creating console applications, web
applications and micro-services.

.NET contains a runtime conforming to .NET Standards a set of
framework libraries, an SDK containing compilers and a &#39, dotnet&#39,
application to drive everything.");

  script_tag(name:"affected", value:"'dotnet7.0' package(s) on Fedora 37.");

  script_tag(name:"solution", value:"Please install the updated package(s).");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"package");

  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-rpm.inc");

release = rpm_get_ssh_release();
if(!release)
  exit(0);

res = "";
report = "";

if(release == "FC37") {

  if(!isnull(res = isrpmvuln(pkg:"dotnet7.0", rpm:"dotnet7.0~7.0.110~1.fc37", rls:"FC37"))) {
    report += res;
  }

  if(report != "") {
    security_message(data:report);
  } else if(__pkg_match) {
    exit(99);
  }
  exit(0);
}

exit(0);

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. ContactΒ us for a demo andΒ discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
20 Aug 2023 00:00Current
7.9High risk
Vulners AI Score7.9
CVSS37.8
EPSS0.01689
SSVC
fedoradotnet7.0security advisorycve-2023-35390cve-2023-38180cross platform applicationslinuxmacoswindowsconsole applicationsweb applicationsmicro-servicesvendorfix
20
.json
Report