Lucene search
K

697 matches found

CVE
CVE
added 2026/06/27 1:19 a.m.16 views

CVE-2023-37524

Technical details (affected product/version, root cause, and remediation) are not publicly available in the provided documents. Monitor for updates from official sources regarding CVE-2023-37524.

7.8CVSS5.8AI score0.001EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/06/26 12:0 a.m.5 views

Oracle Linux 9 : .NET / 10.0 (ELSA-2026-21297)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-21297 advisory. 10.0.109-1.0.1 - Add support for Oracle Linux 10.0.109-1 - Update to .NET SDK 10.0.109 and Runtime 10.0.9 - Resolves: RHEL-181558 10.0.108-1 - Update to .NET S...

7.5CVSS5.9AI score0.0243EPSS
Exploits0References2
OSV
OSV
added 2026/06/23 10:8 a.m.4 views

RHSA-2026:28011 Red Hat Security Advisory: .NET 8.0 security update

Bulletin has no description...

7.5CVSS5.8AI score0.0243EPSS
Exploits0References13
Cvelist
Cvelist
added 2026/06/22 9:26 a.m.36 views

CVE-2026-12580 Digiwin|EasyFlow .NET - Stored Cross-Site Scripting

EasyFlow .NET developed by Digiwin has a Stored Cross-Site Scripting vulnerability, allowing authenticated remote attackers to inject persistent JavaScript code executed in users' browsers upon page load...

5.4CVSS0.00168EPSS
Exploits0References2
OSV
OSV
added 2026/06/22 5:39 a.m.3 views

BIT-DOTNET-2026-35433 .NET Elevation of Privilege Vulnerability

Improper input validation in .NET allows an unauthorized attacker to elevate privileges locally...

7.3CVSS5.8AI score0.00662EPSS
Exploits0References5
OSV
OSV
added 2026/06/22 5:39 a.m.5 views

BIT-DOTNET-SDK-2026-32175 .NET Core Tampering Vulnerability

A tampering vulnerability exists when .NET Core improperly handles specially crafted files. An attacker who successfully exploited this vulnerability could write arbitrary files and directories to certain locations on a vulnerable system. However, an attacker would have limited control over the...

4.3CVSS6AI score0.00711EPSS
Exploits0References2
OSV
OSV
added 2026/06/13 12:3 a.m.10 views

RLSA-2026:25220 Important: .NET 8.0 security update

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 8.0.128 and .NET Runtime...

7.5CVSS5.3AI score0.0243EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/06/12 10:9 p.m.7 views

CVE-2025-7008 Avast antivirus heap buffer OOB read when scanning a malformed PE file

Heap buffer out-of-bounds read vulnerability in Avast Antivirus when scanning a malformed Windows PE file with .NET metadata may allow Local Execution of Code or Denial-of-Service of the antivirus process. This issue affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast...

7.8CVSS5.7AI score0.00146EPSS
Exploits0References1
OSV
OSV
added 2026/06/12 10:7 a.m.9 views

RHSA-2026:25222 Red Hat Security Advisory: .NET 10.0 security update

Bulletin has no description...

7.5CVSS4.9AI score0.0243EPSS
Exploits0References13
OSV
OSV
added 2026/06/12 10:7 a.m.8 views

RHSA-2026:25220 Red Hat Security Advisory: .NET 8.0 security update

Bulletin has no description...

7.5CVSS4.8AI score0.0243EPSS
Exploits0References13
OSV
OSV
added 2026/06/11 10:9 a.m.7 views

RHSA-2026:25115 Red Hat Security Advisory: .NET 10.0 security update

Bulletin has no description...

7.5CVSS5.2AI score0.0243EPSS
Exploits0References13
OSV
OSV
added 2026/06/11 10:9 a.m.7 views

RHSA-2026:25114 Red Hat Security Advisory: .NET 10.0 security update

Bulletin has no description...

7.5CVSS5.2AI score0.0243EPSS
Exploits0References13
OSV
OSV
added 2026/06/11 10:9 a.m.8 views

RHSA-2026:25113 Red Hat Security Advisory: .NET 9.0 security update

Bulletin has no description...

7.5CVSS5.2AI score0.0243EPSS
Exploits0References13
OSV
OSV
added 2026/06/11 10:9 a.m.10 views

RHSA-2026:25110 Red Hat Security Advisory: .NET 8.0 security update

Bulletin has no description...

7.5CVSS5.2AI score0.0243EPSS
Exploits0References13
Snyk
Snyk
added 2026/06/10 11:12 p.m.9 views

Uncontrolled Recursion

Overview Magick.NET-Q8-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...

6.8CVSS5.3AI score0.00107EPSS
Exploits0References2
Snyk
Snyk
added 2026/06/10 11:12 p.m.14 views

Uncontrolled Recursion

Overview Magick.NET-Q16-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...

6.8CVSS5.3AI score0.00107EPSS
Exploits0References2
Snyk
Snyk
added 2026/06/10 11:12 p.m.13 views

Uncontrolled Recursion

Overview Magick.NET-Q16-OpenMP-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package a...

6.8CVSS5.3AI score0.00107EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/10 3:58 p.m.10 views

CVE-2026-45491

A flaw was found in .NET's System.Formats.Tar library. When extracting a specially crafted TAR archive containing symbolic links, the TarFile.ExtractToDirectory method may incorrectly follow those links and write files outside the intended extraction directory. An attacker could exploit this issu...

6.2CVSS5.8AI score0.00388EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/10 3:56 p.m.12 views

CVE-2026-45490

A flaw was found in the .NET SDK dotnet.exe workload command on Windows. Insufficient access controls on a named pipe could allow a local attacker to perform arbitrary file creation or truncation operations with the privileges of another local user. This issue may lead to privilege escalation and...

7.8CVSS5.9AI score0.00384EPSS
Exploits0References4
NCSC
NCSC
added 2026/06/09 6:23 p.m.23 views

vulnerabilities handled in Microsoft Developer Tools

Microsoft has addressed vulnerabilities in Developer Tools. A malicious actor could exploit these vulnerabilities to carry out attacks that can cause various types of damage, as described in the tables below. Except for the vulnerability in .NET Core, where no prior authentication or user...

9.6CVSS5.7AI score0.0243EPSS
Exploits0
Rows per page
Query Builder