dotnet: Information Disclosure: MD.SqlClient(MDS) & System.data.SQLClient (SDS)

A vulnerability was found in the .NET Framework. This vulnerability exists in the Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data provider where an attackercan perform an AiTM adversary-in-the-middle attack between the SQL client and the SQL server. This may allow the attacker to stea...

dotnet: X509 Certificates - Validation Bypass across Azure

A security feature bypass vulnerability exists when Microsoft .NET Framework-based applications use X.509 chain building APIs but do not completely validate the X.509 certificate due to a logic flaw. An attacker could present an arbitrary untrusted certificate with malformed signatures, triggerin...

PT-2024-1054 · Microsoft · .Net Framework

Name of the Vulnerable Software and Affected Versions: .NET Framework affected versions not specified Description: The issue is related to incorrect cleanup or release of resources in the .NET Framework, which can be exploited by a remote attacker to cause a denial of service. This can affect the...

Microsoft .NET Framework Security Vulnerabilities

Microsoft .NET Framework is a comprehensive and consistent programming model from Microsoft Corporation USA and a development platform. The platform includes the C and Visual Basic programming languages, a public language runtime library, and an extensive class library. A security vulnerability...

Microsoft .NET and Microsoft Visual Studio Security Vulnerabilities

Microsoft Visual Studio is a family of development tool suites and a fundamentally complete development toolset that includes most of the tools needed throughout the software lifecycle. Microsoft .NET is a software framework dedicated to agile software development, rapid application development,...

The vulnerability of the Microsoft .NET Framework software platform, and the Microsoft Visual Studio development tools, are related to deficiencies in access control mechanisms, which allow attackers to escalate their privileges.

The vulnerability of the Microsoft .NET Framework software platform, along with the Microsoft Visual Studio development tools, is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to enhance their privileges remotely...

ALSA-2023:7253 Moderate: dotnet8.0 security update

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. Security Fixes: dotnet: Arbitrary File Write and Deletion Vulnerability: FormatFtpCommand CVE-2023-36049 dotnet: ASP.NET Security Feature Bypass...

Microsoft ASP.NET Core Security Vulnerability

Microsoft ASP.NET Core is a framework of cross-platform open source framework from Microsoft. The framework is used to build cloud-based applications such as Web applications, Internet of Things applications, and mobile backends. A security vulnerability exists in Microsoft ASP.NET Core. An...

UBUNTU-CVE-2023-36049

.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability...

SUSE CVE-2019-0980

A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and .Net Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981...

SUSE CVE-2020-1108

A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests, aka '.NET Core & .NET Framework Denial of Service Vulnerability'...

CVE-2023-36788

A vulnerability was found in dotNET. A remote code execution is possible within the .NET Framework...

The vulnerability of the Microsoft .NET Framework software lies in the improper limitation of XML references to external objects, which allows attackers to access confidential information.

The vulnerability of the Microsoft .NET Framework software platform is related to an incorrect limitation on XML references to external objects. Exploiting this vulnerability could allow a malicious actor to gain access to confidential information...

October 10, 2023-KB5031224 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 22H2

October 10, 2023-KB5031224 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 22H2 Release Date: October 10, 2023 Version: .NET Framework 3.5, 4.8 and 4.8.1 IMPORTANT This update is included in the Cumulative Update that's dated October 10, 2023. Parts of this update...

September 26, 2023-KB5031041 Cumulative Update Preview for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 22H2

September 26, 2023-KB5031041 Cumulative Update Preview for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 22H2 Release Date: September 26, 2023 Version: .NET Framework 3.5, 4.8 and 4.8.1 Summary This article describes the security and Cumulative Update for 3.5, 4.8 and 4.8.1 for Windows...

UBUNTU-CVE-2023-36788

.NET Framework Remote Code Execution Vulnerability...

August 22, 2023-KB5029847 Cumulative Update Preview for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 22H2

August 22, 2023-KB5029847 Cumulative Update Preview for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 22H2 Release Date: August 22, 2023 Version: .NET Framework 3.5, 4.8 and 4.8.1 Summary This article describes the Cumulative Update for 3.5, 4.8 and 4.8.1 for Windows 10 Version 22H2...

Microsoft .NET Framework Security Vulnerabilities

Microsoft .NET Framework is a comprehensive and consistent programming model from Microsoft Corporation USA and a development platform. The platform includes the C and Visual Basic programming languages, a public language runtime library, and an extensive class library. A security vulnerability...

PT-2023-4429 · Microsoft · .Net Framework

Name of the Vulnerable Software and Affected Versions: .NET Framework affected versions not specified Description: The issue is related to errors in the representation of information by the user interface, which can be exploited by a remote attacker to conduct spoofing attacks. There is no...

July 25, 2023-KB5028415 Cumulative Update Preview for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 11, version 21H2

July 25, 2023-KB5028415 Cumulative Update Preview for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 11, version 21H2 Release Date: July 25, 2023 Version: .NET Framework 3.5, 4.8 and 4.8.1 Summary This article describes the Cumulative Update for 3.5, 4.8 and 4.8.1 for Windows 11, version 21H2...