CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

Packet Storm•added 2026/04/06 12:0 a.m.•84 views

📄 ASP.net 8.0.10 HTTP Request Smuggling / Authentication Bypass

ASP.net version 8.0.10 suffers from HTTP request smuggling, bypass, and server-side request forgery vulnerabilities. Exploit Title: ASP.net 8.0.10 - Bypass Date: 2025-11-03 Author: Mohammed Idrees Banyamer Author Country: Jordan Instagram: @banyamersecurity GitHub: https://github.com/mbanyamer CV...

9.9CVSS7.2AI score0.66258EPSS

Exploits5

Veracode•added 2024/05/15 3:58 a.m.•27 views

Denial Of Service (DoS)

Microsoft.AspNetCore.App.Runtime is vulnerable to Denial of Service DoS. The vulnerability is caused by a deadlock that occurs within the .NET Kestrel web server, specifically impacting the handling of concurrent requests under certain conditions, which allows an attacker to potentially disrupt...

5.9CVSS6.9AI score0.01688EPSS

Exploits0References4Affected Software14

AlmaLinux•added 2023/11/01 12:0 a.m.•24 views

Moderate: .NET 7.0 security update

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 7.0.113 and .NET Runtime 7.0.13...

6.5CVSS6.6AI score0.047EPSS

Exploits0References4

Ubuntu•added 2023/10/19 3:57 p.m.•83 views

USN-6427-2: .NET vulnerability

USN-6427-1 fixed a vulnerability in .NET. This update provides the corresponding update for .NET 8. Original advisory details: It was discovered that the .NET Kestrel web server did not properly handle HTTP/2 requests. A remote attacker could possibly use this issue to cause a denial of service...

7.5CVSS7.2AI score0.99999EPSS

Exploits19

Ubuntu•added 2023/10/10 6:18 p.m.•81 views

USN-6427-1: .NET vulnerability

It was discovered that the .NET Kestrel web server did not properly handle HTTP/2 requests. A remote attacker could possibly use this issue to cause a denial of service...

7.5CVSS7.2AI score0.99999EPSS

Exploits19

RedHat Linux•added 2023/09/13 3:4 p.m.•27 views

Moderate: Red Hat Security Advisory: .NET 6.0 security update

An update for .NET 6.0 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

6.5CVSS6.9AI score0.047EPSS

Exploits0References2

AlmaLinux•added 2023/09/13 12:0 a.m.•46 views

Moderate: .NET 6.0 security update

6.5CVSS6.4AI score0.047EPSS

Exploits0References4

Snyk•added 2023/08/08 5:17 p.m.•4 views

Denial of Service (DoS)

Overview Affected versions of this package are vulnerable to Denial of Service DoS in .NET Kestrel where a malicious client can bypass QUIC stream limit in HTTP/3 in both ASP.NET and .NET runtimes, resulting in exploitation of this vulnerability. Note: .NET 6 included HTTP/3 support as a preview...

7.5CVSS7.1AI score0.02563EPSS

Exploits0References2

Snyk•added 2023/08/08 5:17 p.m.•1 views

Denial of Service (DoS)

7.5CVSS7.1AI score0.02563EPSS

Exploits0References2

Tenable Nessus•added 2023/08/03 12:0 a.m.•29 views

RHEL 8 : .NET 6.0 (RHSA-2023:4448)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:4448 advisory. .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR...

8.1CVSS8.2AI score0.02783EPSS

Exploits0References10