Lucene search

K
redhatRedHatRHSA-2023:4640
HistoryAug 14, 2023 - 1:46 p.m.

(RHSA-2023:4640) Important: .NET 6.0 security update

2023-08-1413:46:13
access.redhat.com
10
.net 6.0
security update
rce
dos
vulnerabilities
cve-2023-35390
cve-2023-38180

0.008 Low

EPSS

Percentile

81.1%

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation.

Security Fix(es):

  • dotnet: RCE under dotnet commands (CVE-2023-35390)

  • dotnet: Kestrel vulnerability to slow read attacks leading to Denial of Service attack (CVE-2023-38180)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.