A vulnerability was found in dotnet. This flaw occurs when parsing an empty HTTP response as a JSON.NET JObject that causes a stack overflow and crashes a process.

References

bugzilla.redhat.com/show_bug.cgi?id=2158342

github.com/dotnet/core/blob/main/release-notes/6.0/6.0.13/6.0.13.md

nvd.nist.gov/vuln/detail/CVE-2023-21538

www.cve.org/CVERecord?id=CVE-2023-21538

oraclelinux 2

github 1

fedora 2

osv 9

almalinux 2

openvas 4

rocky 2

redhat 3

mscve 1

nessus 15

cvelist 1

prion 1

alpinelinux 1

veracode 1

ibm 1

ubuntucve 1

mskb 1

ubuntu 1

cve 1

kaspersky 1

rapid7blog 1

oraclelinux

.NET 6.0 security, bug fix, and enhancement update

2023-01-12 00:00:00

.NET 6.0 security, bug fix, and enhancement update

2023-01-12 00:00:00

github

.NET Denial of Service Vulnerability

2023-01-10 22:43:38

fedora

[SECURITY] Fedora 37 Update: dotnet6.0-6.0.113-1.fc37

2023-01-22 01:47:58

[SECURITY] Fedora 36 Update: dotnet6.0-6.0.113-1.fc36

2023-01-22 01:52:40

osv

.NET Denial of Service Vulnerability

2023-01-10 22:43:38

Moderate: .NET 6.0 security, bug fix, and enhancement update

2023-01-11 00:00:00

CVE-2023-21538

2023-01-10 22:15:14

almalinux

Moderate: .NET 6.0 security, bug fix, and enhancement update

2023-01-11 00:00:00

Moderate: .NET 6.0 security, bug fix, and enhancement update

2023-01-11 00:00:00

openvas

Ubuntu: Security Advisory (USN-5798-1)

2023-01-11 00:00:00

Fedora: Security Advisory for dotnet6.0 (FEDORA-2023-4d5f7e5cb0)

2023-01-22 00:00:00

Fedora: Security Advisory for dotnet6.0 (FEDORA-2023-f9368f7fea)

2023-01-22 00:00:00

rocky

.NET 6.0 security, bug fix, and enhancement update

2023-01-11 16:25:48

.NET 6.0 security, bug fix, and enhancement update

2023-01-11 16:25:43

redhat

(RHSA-2023:0078) Moderate: .NET 6.0 security, bug fix, and enhancement update

2023-01-11 16:25:45

(RHSA-2023:0077) Moderate: .NET 6.0 security, bug fix, and enhancement update

2023-01-11 16:25:43

(RHSA-2023:0079) Moderate: .NET 6.0 security, bug fix, and enhancement update

2023-01-11 16:25:48

mscve

.NET Denial of Service Vulnerability

2023-01-10 08:00:00

nessus

Fedora 36 : dotnet6.0 (2023-4d5f7e5cb0)

2023-01-22 00:00:00

Security Updates for Microsoft .NET Core (January 2023)

2023-01-10 00:00:00

RHEL 9 : .NET 6.0 (RHSA-2023:0077)

2023-01-11 00:00:00

cvelist

CVE-2023-21538 .NET Denial of Service Vulnerability

2023-01-10 00:00:00

prion

Denial of service

2023-01-10 22:15:00

alpinelinux

CVE-2023-21538

2023-01-10 22:15:14

veracode

Denial Of Service (DoS)

2023-01-12 04:11:44

ibm

Security Bulletin: A denial of service in Microsoft .NET may affect IBM Robotic Process Automation for Cloud Pak (CVE-2023-21538)

2023-03-08 16:11:04

ubuntucve

CVE-2023-21538

2023-01-10 00:00:00

mskb

.NET 6.0 Update - January 10, 2023 (KB5022546)

2023-01-10 08:00:00

ubuntu

.NET 6 vulnerability

2023-01-10 00:00:00

cve

CVE-2023-21538

2023-01-10 22:15:14

kaspersky

KLA20160 Multiple vulnerabilities in Microsoft Developer Tools

2023-01-10 00:00:00

rapid7blog

Patch Tuesday - January 2023

2023-01-10 22:32:55

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.002 Low

EPSS

Percentile

57.5%

JSON

Related for RH:CVE-2023-21538