33 matches found
TencentOS Server 3: .NET 7.0 (TSSA-2023:0178)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0178 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...
Linux Distros Unpatched Vulnerability : CVE-2023-29337
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NuGet Client Remote Code Execution Vulnerability CVE-2023-29337 Note that Nessus relies on the presence of the package as reported by the vendor. %NASLMINLEVEL...
Rocky Linux 8 : .NET 6.0 (RLSA-2023:3582)
The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:3582 advisory. - .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability CVE-2023-24936 - .NET, .NET Framework, and Visual Studio Denial of Servic...
RLSA-2023:3593 Important: .NET 7.0 security, bug fix, and enhancement update
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 7.0.107 and .NET Runtime 7.0.7. The...
.NET 6.0 security, bug fix, and enhancement update
An update is available for dotnet6.0. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list .NET is a managed-software framework. It implements a subset of the .NET...
.NET 7.0 security, bug fix, and enhancement update
An update is available for dotnet7.0. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list .NET is a managed-software framework. It implements a subset of the .NET...
Important: Red Hat Security Advisory: .NET 6.0 security update
An update for .NET 6.0 is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fo...
RHEL 8 : .NET 6.0 (RHSA-2023:4448)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:4448 advisory. .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR...
Amazon Linux 2023 : aspnetcore-runtime-6.0, aspnetcore-targeting-pack-6.0, dotnet (ALAS2023-2023-242)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-242 advisory. .NET Denial of Service Vulnerability. CVE-2023-21538 .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability CVE-2023-24895 .NET, .NET Framework, and Visual Studio Elevation...
Ubuntu: Security Advisory (USN-6161-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle Linux 9 : .NET / 7.0 (ELSA-2023-3592)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-3592 advisory. 7.0.107-1.0.1 - Set TargetRid based on os release major version, add OL arm64 RuntimeIdentifier Orabug: 34671152 7.0.107-1 - Update to .NET SDK 7.0.107...
Oracle Linux 8 : .NET / 6.0 (ELSA-2023-3582)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-3582 advisory. 6.0.118-1.0.1 - Add missing Oracle Linux Runtime IDs 6.0.118-1 - Update to .NET SDK 6.0.118 and Runtime 6.0.18 - Resolves: RHBZ2212378 6.0.117-2 - Upda...
CVE-2023-29337
NuGet Client Remote Code Execution Vulnerability...
CVE-2023-29337
NuGet Client Remote Code Execution Vulnerability...
CVE-2023-29337
NuGet Client Remote Code Execution Vulnerability...
CVE-2023-29337 NuGet Client Remote Code Execution Vulnerability
...
CVE-2023-29337
CVE-2023-29337 is a Linux-specific vulnerability in NuGet Client (and related .NET tooling) describing a race condition that can enable a symlink attack and remote code execution when a victim opens specially crafted content. IBM/IBM RPA advisory confirms remote code execution possibilities via ....
CVE-2023-29337 NuGet Client Remote Code Execution Vulnerability
...
Important: Red Hat Security Advisory: .NET 7.0 security, bug fix, and enhancement update
An update for .NET 7.0 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
Important: Red Hat Security Advisory: .NET 6.0 security, bug fix, and enhancement update
An update for .NET 6.0 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...