Path Traversal

.NET Core is vulnerable to Path Traversal. The vulnerability is due to improper handling of specially crafted files, which allows an attacker to write arbitrary files and directories to unintended locations on a vulnerable system...

BIT-ASPNET-CORE-2026-26130 ASP.NET Core Denial of Service Vulnerability

Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny service over a network...

Security Update for Microsoft .NET Core (October 2025)

The version of tested product installed on the remote host is prior to tested version. It is, therefore, affected by information disclosure vulnerability as referenced in the vendor advisory. - Inadequate encryption strength in .NET, .NET Framework, Visual Studio allows an authorized attacker to...

MAL-2025-852 Malicious code in microsoft.netcore.universalwindowsplatform (npm)

--- -= Per source details. Do not edit below this line.=-...

VulnCheck KEV: CVE-2023-38180

Microsoft .NET Core and Visual Studio contain an unspecified vulnerability that allows for denial-of-service DoS...

SUSE CVE-2018-8292

An information disclosure vulnerability exists in .NET Core when authentication information is inadvertently exposed in a redirect, aka ".NET Core Information Disclosure Vulnerability." This affects .NET Core 2.1, .NET Core 1.0, .NET Core 1.1, PowerShell Core 6.0...

Remote Code Execution (RCE)

Overview Affected versions of this package are vulnerable to Remote Code Execution RCE where a stack buffer overrun occurs in .NET Double Parse routine. Remediation Upgrade Microsoft.NETCore.App.Runtime.AOT.osx-x64.Cross.tvossimulator-x64 to version 6.0.3 or higher. References - Dotnet Announceme...

dotnet: External Entity Injection during XML signature verification

An information disclosure vulnerability exists in .NET Core and .NET. This issue can lead to unauthorized access to privileged information...

Microsoft .NET Core和Microsoft Visual Studio 安全漏洞

Microsoft Visual Studio and Microsoft .NET Core are both products of Microsoft Corporation. Microsoft Visual Studio is a family of development tool suites and a fundamentally complete set of development tools that includes most of the tools needed throughout the software lifecycle. Microsoft .NET...

Microsoft .NET Core和Microsoft Visual Studio 信息泄露漏洞

Microsoft .NET Core and Microsoft Visual Studio are both products of Microsoft Corporation USA. NET Core is a free and open source development platform. NET Core is a free, open source development platform that features multi-language support and cross-platform capabilities.Microsoft Visual Studi...

The vulnerability of the .NET Core software platform, related to insufficient input validation, allows attackers to execute arbitrary code.

The vulnerability of the .NET Core software platform is related to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

Microsoft .NET Core and ASP.NET Core Security Feature Bypass Vulnerability

Microsoft .NET Core and Microsoft ASP.NET Core are both products of Microsoft Corporation USA. NET Core is a free open source development platform. NET Core is a free open source development platform with multi-language support and cross-platform features.Microsoft ASP.NET Core is a framework of...

The vulnerability of the ASP.NET Core software platform, related to errors in request processing, allows a hacker to cause a service failure.

The vulnerability of the ASP.NET Core software platform is related to errors in request processing. Exploiting this vulnerability can allow an attacker, operating remotely, to cause a service failure by sending specially crafted requests to the ASP.NET Core application...

Vulnerability of .NET Core and Microsoft .NET Framework software platforms, related to insufficient validation of input data, allows attackers to trigger service failures.

The vulnerability of.NET Core and Microsoft.NET Framework software lies in insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

PT-2020-2470 · Microsoft +3 · Net Core +4

Name of the Vulnerable Software and Affected Versions: .NET Core versions prior to the fixed version .NET Framework versions prior to the fixed version Description: A denial of service issue exists due to improper handling of web requests. This can be exploited remotely without authentication,...

Microsoft .NET Framework and .NET Core Denial of Service Vulnerability (CNVD-2020-62336)

Microsoft .NET Core and Microsoft .NET Framework are both products of the U.S.-based Microsoft Corporation Microsoft. NET Core is a free and open source development platform. NET Core is a free, open source development platform that features multi-language support and cross-platform...

Vulnerability of the .NET Core runtime and PowerShell Core automation framework, related to authentication process errors, allowing attackers to disclose sensitive information

The vulnerability of the .NET Core runtime and the PowerShell Core automation framework is related to authentication process errors. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information remotely...

The vulnerability of the System.IO.Pipelines library in .NET Core and ASP.NET Core programming frameworks allows attackers to induce service interruptions.

The vulnerability of the System.IO.Pipelines library in .NET Core and ASP.NET Core applications is related to request processing errors. Exploiting this vulnerability allows an attacker to cause service failures through a specially crafted request...

PT-2018-1582 · Microsoft · Net Core +2

Name of the Vulnerable Software and Affected Versions: .NET Core versions 2.1 ASP.NET Core versions 2.1 System.IO.Pipelines affected versions not specified Description: A denial of service issue exists due to improper handling of requests by System.IO.Pipelines. This can be exploited by a remote...

Microsoft .NET Core Denial of Service Vulnerability

Microsoft .NET Core is a free and open source development platform from Microsoft. The platform has multi-language support and cross-platform features.PowerShell Core is a task automation and management framework based on the . A denial of service vulnerability exists in Microsoft .NET Core and...