Lucene search
K

81 matches found

Snyk
Snyk
added 2025/01/14 7:44 p.m.4 views

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow through the loading of a specially crafted file. Remediation Upgrade Microsoft.NETCore.App.Runtime.linux-arm to version 8.0.12, 9.0.1 or higher. References - GitHub Issue...

7.5CVSS7AI score0.01764EPSS
Exploits0References2
Snyk
Snyk
added 2025/01/14 7:43 p.m.3 views

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow. An attacker can execute arbitrary code by sending malicious requests designed to exploit the vulnerability. Remediation Upgrade Microsoft.NETCore.App.Runtime.linux-arm to version 9.0.1 or higher. References -...

9.2CVSS7.9AI score0.01637EPSS
Exploits0References2
Snyk
Snyk
added 2024/10/08 5:43 p.m.2 views

Use After Free

Overview Microsoft.AspNetCore.App.Runtime.linux-arm is a package providing a default set of APIs for building an ASP.NET Core application. Contains assets used for self-contained deployments. Affected versions of this package are vulnerable to Use After Free that could allow remote code execution...

9.2CVSS8AI score0.02049EPSS
Exploits0References3
Snyk
Snyk
added 2024/08/13 7:26 p.m.3 views

Cleartext Transmission of Sensitive Information

Overview Affected versions of this package are vulnerable to Cleartext Transmission of Sensitive Information via the TlsStream process. An attacker can gain access to sensitive information by intercepting unencrypted data. Remediation Upgrade Microsoft.NETCore.App.Runtime.linux-arm to version 8.0...

7.1CVSS6.8AI score0.0131EPSS
Exploits0References2
Snyk
Snyk
added 2024/07/09 9:14 p.m.3 views

Improper Input Validation

Overview Affected versions of this package are vulnerable to Improper Input Validation through the parsing of X.509 certificates. An attacker can cause excessive CPU consumption and disrupt service by submitting a specially crafted malicious certificate. Remediation Upgrade...

7.5CVSS6.9AI score0.02719EPSS
Exploits0References2
Snyk
Snyk
added 2024/07/09 9:14 p.m.3 views

Use After Free

Overview Microsoft.AspNetCore.App.Runtime.linux-arm is a package providing a default set of APIs for building an ASP.NET Core application. Contains assets used for self-contained deployments. Affected versions of this package are vulnerable to Use After Free through the handling of HTTP/3 request...

9.2CVSS8.4AI score0.02587EPSS
Exploits0References2
Snyk
Snyk
added 2024/05/14 8:31 p.m.2 views

Race Condition

Overview Microsoft.AspNetCore.App.Runtime.linux-arm is a package providing a default set of APIs for building an ASP.NET Core application. Contains assets used for self-contained deployments. Affected versions of this package are vulnerable to Race Condition through the...

5.9CVSS6.8AI score0.01688EPSS
Exploits0References2
Snyk
Snyk
added 2024/05/14 8:30 p.m.4 views

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow due to a stack buffer overrun in the Double Parse routine. An attacker can execute arbitrary code by supplying a specially crafted input that triggers the buffer overrun. Remediation Upgrade...

6.3CVSS8AI score0.01248EPSS
Exploits0References2
Snyk
Snyk
added 2024/03/12 8:7 p.m.2 views

Denial of Service (DoS)

Overview Affected versions of this package are vulnerable to Denial of Service DoS due to the handling of specially crafted requests that may cause a resource leak. An attacker can cause a denial of service by sending these requests. Details Denial of Service DoS describes a family of attacks, al...

7.5CVSS7.1AI score0.03065EPSS
Exploits0References2
Snyk
Snyk
added 2024/02/13 7:49 p.m.3 views

Resource Exhaustion

Overview Microsoft.AspNetCore.App.Runtime.linux-arm is a package providing a default set of APIs for building an ASP.NET Core application. Contains assets used for self-contained deployments. Affected versions of this package are vulnerable to Resource Exhaustion due to improper handling of certa...

7.5CVSS7AI score0.024EPSS
Exploits0References2
Snyk
Snyk
added 2024/02/13 7:43 p.m.3 views

Denial of Service (DoS)

Overview Microsoft.AspNetCore.App.Runtime.linux-arm is a package providing a default set of APIs for building an ASP.NET Core application. Contains assets used for self-contained deployments. Affected versions of this package are vulnerable to Denial of Service DoS when parsing X509 certificates...

7.5CVSS7.1AI score0.02707EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/12/05 12:0 a.m.6 views

3s-smart Software Solutions CODESYS Control Operating System Command Injection Vulnerability

3s-smart Software Solutions CODESYS Control is a suite of industrial control program programming software from 3s-smart Software Solutions, Germany. An operating system command injection vulnerability exists in 3s-smart Software Solutions CODESYS Control versions prior to 4.11.0.0. The...

8.8CVSS8.9AI score0.00958EPSS
Exploits0References1
Snyk
Snyk
added 2023/07/11 12:0 a.m.5 views

Access Restriction Bypass

Overview Microsoft.AspNetCore.App.Runtime.linux-arm is a package providing a default set of APIs for building an ASP.NET Core application. Contains assets used for self-contained deployments. Affected versions of this package are vulnerable to Access Restriction Bypass. A vulnerability exist in...

8.1CVSS6.9AI score0.01913EPSS
Exploits0References2
Snyk
Snyk
added 2023/06/14 12:0 a.m.3 views

Privilege Escalation

Overview Affected versions of this package are vulnerable to Privilege Escalation. A vulnerability exists in .NET using extracting the contents of a Tar file which may result in elevation of privileges. Remediation Upgrade Microsoft.NETCore.App.Runtime.linux-arm to version 6.0.18, 7.0.7 or higher...

6.5CVSS6.9AI score0.006EPSS
Exploits0References2
Snyk
Snyk
added 2023/06/14 12:0 a.m.4 views

Privilege Escalation

Overview Affected versions of this package are vulnerable to Privilege Escalation. A vulnerability exists in .NET when deserializing a DataSet or DataTable from XML which may result in elevation of privileges. Remediation Upgrade Microsoft.NETCore.App.Runtime.linux-arm to version 6.0.18, 7.0.7 or...

7.5CVSS6.9AI score0.01558EPSS
Exploits0References2
Snyk
Snyk
added 2023/06/14 12:0 a.m.3 views

Remote Code Execution (RCE)

Overview Affected versions of this package are vulnerable to Remote Code Execution RCE. A vulnerability exists in .NET source generator for P/Invokes that can lead to generated code freeing uninitialized memory and crashing. Remediation Upgrade Microsoft.NETCore.App.Runtime.linux-arm to version...

7.3CVSS7.6AI score0.00999EPSS
Exploits0References2
Snyk
Snyk
added 2023/06/14 12:0 a.m.2 views

Denial of Service (DoS)

Overview Affected versions of this package are vulnerable to Denial of Service DoS. A vulnerability exists in .NET when processing malicious X.509 client certificates that may consume excessive CPU. Details Denial of Service DoS describes a family of attacks, all aimed at making a system...

7.5CVSS7.1AI score0.02627EPSS
Exploits0References2
Snyk
Snyk
added 2023/01/10 10:43 p.m.2 views

Denial of Service (DoS)

Overview Affected versions of this package are vulnerable to Denial of Service DoS by sending an invalid request to an exposed endpoint. Details Denial of Service DoS describes a family of attacks, all aimed at making a system inaccessible to its intended and legitimate users. Unlike other...

7.5CVSS7AI score0.0274EPSS
Exploits0References2
Snyk
Snyk
added 2022/10/21 8:50 p.m.2 views

Denial of Service (DoS)

Overview Microsoft.AspNetCore.App.Runtime.linux-arm is a package providing a default set of APIs for building an ASP.NET Core application. Contains assets used for self-contained deployments. Affected versions of this package are vulnerable to Denial of Service DoS via excess memory allocations...

7.5CVSS7.1AI score0.04935EPSS
Exploits0References2
Snyk
Snyk
added 2022/10/21 8:29 p.m.3 views

Denial of Service (DoS)

Overview Microsoft.AspNetCore.App.Runtime.linux-arm is a package providing a default set of APIs for building an ASP.NET Core application. Contains assets used for self-contained deployments. Affected versions of this package are vulnerable to Denial of Service DoS when the Kestrel web server...

7.5CVSS7AI score0.03739EPSS
Exploits0References2
Rows per page
Query Builder