11 matches found
Security Update for .NET 7.0 Core SDK (CVE-2023-38178)
The version of Microsoft .NET Core SDK installed on the remote host is prior to 7.0.10. It is, therefore, affected by a denial-of-service DoS vulnerability. The vulnerability exists in .NET Kestrel where a malicious client can bypass QUIC stream limit in HTTP/3 in both ASP.NET and .NET runtimes...
Ubuntu: Security Advisory (USN-6278-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-6278-2: .NET vulnerabilities
USN-6278-1 fixed several vulnerabilities in .NET. This update provides the corresponding updates for Ubuntu 22.04 LTS. Original advisory details: It was discovered that .NET did properly handle the execution of certain commands. An attacker could possibly use this issue to achieve remote code...
USN-6278-1: .NET vulnerabilities
It was discovered that .NET did not properly handle the execution of certain commands. An attacker could possibly use this issue to achieve remote code execution. CVE-2023-35390 Benoit Foucher discovered that .NET did not properly implement the QUIC stream limit in HTTP/3. An attacker could...
CVE-2023-38178
.NET Core and Visual Studio Denial of Service Vulnerability...
CVE-2023-38178
.NET Core and Visual Studio Denial of Service Vulnerability...
CVE-2023-38178 .NET Core and Visual Studio Denial of Service Vulnerability
...
CVE-2023-38178
Summary: CVE-2023-38178 is a remote Denial of Service vulnerability in .NET Core/Visual Studio (notably affecting .NET 7.0 up to 7.0.9 and .NET 6 with HTTP/3 support). Connected advisories provide concrete mitigations and patched versions: for .NET 7.0, upgrade to 7.0.10 (and corresponding Runtim...
CVE-2023-38178
.NET Core and Visual Studio Denial of Service Vulnerability...
CVE-2023-38178
.NET Core and Visual Studio Denial of Service Vulnerability...
Security Update for Microsoft .NET Core (August 2023)
The version of tested product installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 2023Aug08 advisory. - .NET and Visual Studio Remote Code Execution Vulnerability CVE-2023-35390 - ASP.NET Core SignalR and Visual Stud...