34 matches found
Fedora 37 : dotnet6.0 (2022-13046bb867)
The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-13046bb867 advisory. This is the monthly .NET 6 update for September 2022. It updates the .NET SDK to 6.0.109 and Runtime to 6.0.9. This includes a fix for CVE-2022-38013 ---- Th...
Rocky Linux 8 : .NET Core 3.1 (RLSA-2022:6057)
The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:6057 advisory. - Improper Removal of Sensitive Information Before Storage or Transfer in GitHub repository eventsource/eventsource prior to v2.0.2. CVE-2022-1650 - .NE...
Rocky Linux 8 : .NET 6.0 (RLSA-2022:6058)
The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:6058 advisory. - .NET Spoofing Vulnerability CVE-2022-34716 Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported versio...
SUSE CVE-2022-34716
unknown...
Security Bulletin: A vulnerability in Microsoft .NET may affect IBM Robotic Process Automation allowing an attacker to conduct spoofing attacks (CVE-2022-34716)
Summary Microsoft .NET is used by IBM Robotic Process Automation as part of the development infrastructure and .NET Runtime CVE-2022-34716. Vulnerability Details CVEID:CVE-2022-34716 DESCRIPTION: Microsoft .NET could allow a remote attacker to conduct spoofing attacks, caused by improper XML...
Security fix for the ALT Linux 10 package dotnet-coreclr-3.1 version 3.1.32-alt1
3.1.32-alt1 built March 18, 2023 Vitaly Lipatov in task 316692 March 12, 2023 Vitaly Lipatov - .NET Core 3.1.32 - CVE-2022-41089: .NET Remote Code Execution Vulnerability - CVE-2022-41032: .NET Elevation of Privilege Vulnerability - CVE-2022-34716: .NET Information Disclosure Vulnerability...
Security fix for the ALT Linux 10 package dotnet-bootstrap-3.1 version 3.1.32-alt1
3.1.32-alt1 built March 18, 2023 Vitaly Lipatov in task 316692 March 12, 2023 Vitaly Lipatov - .NET Core 3.1.32 and .NET Core SDK 3.1.426 releases - CVE-2022-41089: .NET Remote Code Execution Vulnerability - CVE-2022-41032: .NET Elevation of Privilege Vulnerability - CVE-2022-38013: .NET Denial o...
Security fix for the ALT Linux 10 package dotnet-bootstrap-6.0 version 6.0.12-alt1
6.0.12-alt1 built Feb. 20, 2023 Vitaly Lipatov in task 315307 Dec. 27, 2022 Vitaly Lipatov - The .NET 6.0.12 and .NET SDK 6.0.112 releases - CVE-2022-41032: .NET Elevation of Privilege Vulnerability - CVE-2022-38013: .NET Denial of Service Vulnerability - CVE-2022-34716: .NET Information Disclosu...
Security fix for the ALT Linux 10 package dotnet-runtime-7.0 version 6.0.12-alt1
Dec. 27, 2022 Vitaly Lipatov 6.0.12-alt1 - new version 6.0.12 with rpmrb script - CVE-2022-41032: .NET Elevation of Privilege Vulnerability - CVE-2022-38013: .NET Denial of Service Vulnerability - CVE-2022-34716: .NET Information Disclosure Vulnerability...
Security Bulletin: IBM Robotic Process Automation may be vulnerable to spoofing attacks due to System.Security.Cryptography.Xml (CVE-2022-34716))
Summary System.Security.Cryptography.Xml is used by IBM Robotic Process Automation as part of the .NET Framework CVE-2022-34716 Vulnerability Details CVEID:CVE-2022-34716 DESCRIPTION: Microsoft .NET could allow a remote attacker to conduct spoofing attacks, caused by improper XML signature...
AlmaLinux 8 : .NET Core 3.1 (6057) (ALSA-2022:6057)
The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2022:6057 advisory. - .NET Spoofing Vulnerability. CVE-2022-34716 Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version...
AlmaLinux 8 : .NET 6.0 (6058) (ALSA-2022:6058)
The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2022:6058 advisory. - .NET Spoofing Vulnerability. CVE-2022-34716 Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version...
Oracle Linux 8 : .NET / Core / 3.1 (ELSA-2022-6057)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-6057 advisory. 3.1.422-1.0.1 - Add missing Oracle Linux Runtime IDs 3.1.422-1 - Update to .NET SDK 3.1.422 and Runtime 3.1.28 - Resolves: RHBZ2115351 Tenable has extracted the...
Moderate: Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update
An update for .NET 6.0 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...
Moderate: Red Hat Security Advisory: .NET Core 3.1 security, bug fix, and enhancement update
An update for .NET Core 3.1 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...
RLSA-2022:6058 Moderate: .NET 6.0 security, bug fix, and enhancement update
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.108 and .NET Runtime 6.0.8...
.NET 6.0 security, bug fix, and enhancement update
An update is available for dotnet6.0. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list .NET is a managed-software framework. It implements a subset of the .NET...
RLSA-2022:6057 Moderate: .NET Core 3.1 security, bug fix, and enhancement update
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 3.1.422 and .NET Runtime 3.1.28...
ALSA-2022:6058 Moderate: .NET 6.0 security, bug fix, and enhancement update
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.108 and .NET Runtime 6.0.8...
RHEL 8 : .NET Core 3.1 (RHSA-2022:6057)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:6057 advisory. .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR...