Lucene search
+L

10 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.6 views

MiracleLinux 8 : dotnet9.0-9.0.104-1.el8_10 (AXSA:2025-9771:08)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9771:08 advisory. dotnet: Privilege Escalation Vulnerability in .NET SignInManager.RefreshSignInAsync Method CVE-2025-24070 Tenable has extracted the preceding description blo...

7CVSS7.2AI score0.00911EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2025/03/11 7:45 p.m.6 views

dotnet: Privilege Escalation Vulnerability in .NET SignInManager.RefreshSignInAsync Method

A flaw was found in the SignInManager.RefreshSignInAsync method. This flaw allows an attacker with local access and low privileges to escalate privileges. The issue might lead to unauthorized access or manipulation of authentication sessions...

7CVSS5.7AI score0.00911EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2025/03/11 7:40 p.m.6 views

dotnet: Privilege Escalation Vulnerability in .NET SignInManager.RefreshSignInAsync Method

A flaw was found in the SignInManager.RefreshSignInAsync method. This flaw allows an attacker with local access and low privileges to escalate privileges. The issue might lead to unauthorized access or manipulation of authentication sessions...

7CVSS5.7AI score0.00911EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2025/03/11 7:39 p.m.8 views

dotnet: Privilege Escalation Vulnerability in .NET SignInManager.RefreshSignInAsync Method

A flaw was found in the SignInManager.RefreshSignInAsync method. This flaw allows an attacker with local access and low privileges to escalate privileges. The issue might lead to unauthorized access or manipulation of authentication sessions...

7CVSS5.7AI score0.00911EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2025/03/11 7:34 p.m.13 views

dotnet: Privilege Escalation Vulnerability in .NET SignInManager.RefreshSignInAsync Method

A flaw was found in the SignInManager.RefreshSignInAsync method. This flaw allows an attacker with local access and low privileges to escalate privileges. The issue might lead to unauthorized access or manipulation of authentication sessions...

7CVSS5.7AI score0.00911EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2023/08/03 7:58 a.m.7 views

dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method

A vulnerability was found in dotNET applications where account lockout maximum failed attempts may not be immediately updated, allowing an attacker to try more passwords and bypass security restrictions. This flaw allows a remote attacker to bypass security features, causing an impact on...

8.1CVSS5.8AI score0.01978EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2023/08/03 7:57 a.m.10 views

dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method

A vulnerability was found in dotNET applications where account lockout maximum failed attempts may not be immediately updated, allowing an attacker to try more passwords and bypass security restrictions. This flaw allows a remote attacker to bypass security features, causing an impact on...

8.1CVSS5.8AI score0.01978EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2023/07/13 8:50 a.m.10 views

dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method

A vulnerability was found in dotNET applications where account lockout maximum failed attempts may not be immediately updated, allowing an attacker to try more passwords and bypass security restrictions. This flaw allows a remote attacker to bypass security features, causing an impact on...

8.1CVSS5.8AI score0.01978EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2023/07/13 8:44 a.m.5 views

dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method

A vulnerability was found in dotNET applications where account lockout maximum failed attempts may not be immediately updated, allowing an attacker to try more passwords and bypass security restrictions. This flaw allows a remote attacker to bypass security features, causing an impact on...

8.1CVSS5.8AI score0.01978EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2023/07/13 8:42 a.m.9 views

dotnet: race condition in Core SignInManager<TUser> PasswordSignInAsync method

A vulnerability was found in dotNET applications where account lockout maximum failed attempts may not be immediately updated, allowing an attacker to try more passwords and bypass security restrictions. This flaw allows a remote attacker to bypass security features, causing an impact on...

8.1CVSS5.8AI score0.01978EPSS
Exploits0References8
Rows per page
Query Builder