3437 matches found
ALSA-2026:25113 Important: .NET 9.0 security update
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 9.0.118 and .NET Runtime...
ALSA-2026:25111 Important: .NET 8.0 security update
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 8.0.128 and .NET Runtime...
ALSA-2026:25112 Important: .NET 9.0 security update
.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 9.0.118 and .NET Runtime...
EUVD-2026-35674
Improper authorization in .NET allows an authorized attacker to elevate privileges locally...
CVE-2026-45491
Improper link resolution before file access 'link following' in .NET allows an unauthorized attacker to perform tampering locally...
CVE-2026-45490
Improper authorization in .NET allows an authorized attacker to elevate privileges locally...
UBUNTU-CVE-2026-45490
Improper authorization in .NET allows an authorized attacker to elevate privileges locally...
CVE-2026-45591
CVE-2026-45591 is an ASP.NET Core Denial of Service vulnerability caused by uncontrolled resource consumption, enabling network-based DoS by an unauthorized attacker. The NVD entries describe the impact as availability loss with a CVSS v3.1 base score of 7.5 (NETWORK, HIGH) and no confidentiality...
CVE-2026-45591 ASP.NET Core Denial of Service Vulnerability
...
Allocation of Resources Without Limits or Throttling
Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling. An attacker can exhaust system resources by sending specially crafted requests over the network, resulting in service unavailability for legitimate users. Remediation Upgrade...
Allocation of Resources Without Limits or Throttling
Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling. An attacker can exhaust system resources by sending specially crafted requests over the network, resulting in service unavailability for legitimate users. Remediation Upgrade...
CVE-2026-45491 .NET Tampering Vulnerability
...
Symlink Attack
Overview Affected versions of this package are vulnerable to Symlink Attack via improper link resolution before file access. An attacker can modify local files by exploiting symbolic links to redirect file operations to unintended locations. Remediation Upgrade...
Symlink Attack
Overview Affected versions of this package are vulnerable to Symlink Attack via improper link resolution before file access. An attacker can modify local files by exploiting symbolic links to redirect file operations to unintended locations. Remediation Upgrade...
CVE-2026-45491
CVE-2026-45491 concerns an improper link resolution before file access ('link following') in .NET, enabling a local attacker to tamper with files. The description from NVD/CVE records specifies local attack vector with low attack complexity and no user interaction, resulting in potential integrit...
CVE-2026-45491 .NET Tampering Vulnerability
...
CVE-2026-45491
Improper link resolution before file access 'link following' in .NET allows an unauthorized attacker to perform tampering locally...
CVE-2026-45490 .NET SDK Elevation of Privilege Vulnerability
...
CVE-2026-45490
CVE-2026-45490 : In .NET, improper authorization could allow an authorized local attacker to elevate privileges. Documents indicate a local attack with low privileges required and high impact on confidentiality, integrity, and availability. Exploitation details, affected versions, and a concrete ...
CVE-2026-45490 .NET SDK Elevation of Privilege Vulnerability
...