Lucene search
K

6556 matches found

Tenable Nessus
Tenable Nessus
added 2026/03/13 12:0 a.m.10 views

AlmaLinux 8 : .NET 10.0 (ALSA-2026:4458)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:4458 advisory. .net: .NET: Denial of Service via out-of-bounds read CVE-2026-26127 asp.net: ASP.NET Core: Denial of Service via uncontrolled resource allocation...

7.5CVSS7.2AI score0.02818EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/03/12 3:34 p.m.8 views

.net: .NET: Denial of Service via out-of-bounds read

A flaw was found in .NET. An unauthorized attacker can exploit an out-of-bounds read vulnerability over a network, leading to a Denial of Service DoS. This can prevent legitimate users from accessing the affected service...

7.5CVSS5.8AI score0.02049EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/03/12 9:50 a.m.4 views

.net: .NET: Denial of Service via out-of-bounds read

A flaw was found in .NET. An unauthorized attacker can exploit an out-of-bounds read vulnerability over a network, leading to a Denial of Service DoS. This can prevent legitimate users from accessing the affected service...

7.5CVSS5.8AI score0.02049EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/03/12 12:0 a.m.4 views

RHEL 8 : .NET 10.0 (RHSA-2026:4458)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:4458 advisory. .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR...

7.5CVSS7.2AI score0.02818EPSS
Exploits0References6
OSV
OSV
added 2026/03/12 12:0 a.m.7 views

ALSA-2026:4453 Important: .NET 10.0 security update

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 10.0.104 and .NET Runtime...

7.5CVSS5.8AI score0.02818EPSS
Exploits0References6
EUVD
EUVD
added 2026/03/11 9:11 p.m.6 views

EUVD-2026-10691

.NET Denial of Service Vulnerability...

7.5CVSS6AI score0.02049EPSS
Exploits0References3
OSV
OSV
added 2026/03/11 9:11 p.m.1 views

GHSA-73J8-2GCH-69RQ .NET Denial of Service Vulnerability

Microsoft Security Advisory CVE-2026-26127 – .NET Denial of Service Vulnerability Executive summary Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 9.0 and .NET 10.0. This advisory also provides guidance on what developers can do to update their...

7.5CVSS5.7AI score0.02049EPSS
Exploits0References4
EUVD
EUVD
added 2026/03/11 7:53 p.m.6 views

EUVD-2026-10695

.NET Elevation of Privilege Vulnerability...

7.8CVSS5.8AI score0.00359EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2026/03/11 4:50 p.m.5 views

USN-8085-1: .NET vulnerabilities

It was discovered that the .NET Microsoft.Bcl.Memory NuGet package did not properly handle certain malformed Base64Url encoded input. An attacker could possibly use this issue to cause .NET to crash, resulting in a denial of service. This issue only affected .NET 9.0 and .NET 10.0. CVE-2026-26127...

7.5CVSS5.8AI score0.02818EPSS
Exploits0
Krebs on Security
Krebs on Security
added 2026/03/11 12:32 a.m.10 views

Microsoft Patch Tuesday, March 2026 Edition

Microsoft Corp. today pushed security updates to fix at least 77 vulnerabilities in its Windows operating systems and other software. There are no pressing "zero-day" flaws this month compared to February's five zero-day treat, but as usual some patches may deserve more rapid attention from...

9.8CVSS6.1AI score0.04491EPSS
Exploits5
Vulnrichment
Vulnrichment
added 2026/03/10 5:5 p.m.3 views

CVE-2026-26131 .NET Elevation of Privilege Vulnerability

...

7.8CVSS5.8AI score0.00359EPSS
Exploits0References1
Microsoft Security Update
Microsoft Security Update
added 2026/03/10 5:0 p.m.644 views

2026-03 .NET 8.0.25 Security Update for x64 Client (KB5081277)

2026-03 .NET 8.0.25 Security Update for x64 Client KB5081277...

5.8AI score
Exploits0
UbuntuCve
UbuntuCve
added 2026/03/10 12:0 a.m.4 views

CVE-2026-26127

Out-of-bounds read in .NET allows an unauthorized attacker to deny service over a network...

7.5CVSS6.8AI score0.02049EPSS
Exploits0References5
AlpineLinux
AlpineLinux
added 2026/02/10 5:51 p.m.6 views

CVE-2026-21218

Improper handling of missing special element in .NET allows an unauthorized attacker to perform spoofing over a network...

7.5CVSS5.5AI score0.01015EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2026/02/10 12:0 a.m.7 views

CVE-2026-21218

Improper handling of missing special element in .NET allows an unauthorized attacker to perform spoofing over a network...

7.5CVSS5.9AI score0.01015EPSS
Exploits0References6
Microsoft KB
Microsoft KB
added 2026/01/29 12:0 a.m.226 views

January 29, 2026-KB5074828 Cumulative Update Preview for .NET Framework 3.5 and 4.8.1 for Windows 11, version 25H2

January 29, 2026-KB5074828 Cumulative Update Preview for .NET Framework 3.5 and 4.8.1 for Windows 11, version 25H2 Release Date: January 29, 2026 Version: .NET Framework 3.5 and 4.8.1 The January 29, 2026 update for Windows 11, version 25H2 includes security and cumulative reliability improvement...

6AI score
Exploits0
GithubExploit
GithubExploit
added 2026/01/16 6:31 p.m.195 views

Exploit for Deserialization of Untrusted Data in Microsoft

WSUS Security Research Toolkit !Pythonhttps://img.shields...

9.8CVSS7.1AI score0.99962EPSS
Exploits24
RedhatCVE
RedhatCVE
added 2025/12/18 8:37 p.m.8 views

CVE-2025-14759

Missing cryptographic key commitment in the Amazon S3 Encryption Client for .NET may allow a user with write access to the S3 bucket to introduce a new EDK that decrypts to different plaintext when the encrypted data key is stored in an "instruction file" instead of S3's metadata record. To...

6CVSS6.7AI score0.00094EPSS
Exploits0References1
OSV
OSV
added 2025/12/18 8:15 p.m.5 views

CVE-2024-58317

A cookie security configuration vulnerability in Kentico Xperience allows attackers to bypass SSL requirements when setting administration cookies via web.config. The vulnerability affects .NET Framework projects by incorrectly handling the 'requireSSL' attribute, potentially compromising session...

6.9CVSS5.8AI score0.00162EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/18 7:53 p.m.4 views

CVE-2024-58317 Kentico Xperience <= 13.0.164 Cookie Security Configuration

A cookie security configuration vulnerability in Kentico Xperience allows attackers to bypass SSL requirements when setting administration cookies via web.config. The vulnerability affects .NET Framework projects by incorrectly handling the 'requireSSL' attribute, potentially compromising session...

6.9CVSS6.7AI score0.00162EPSS
Exploits0References2
Rows per page
Query Builder