Search CVE reports

Toggle filters

31 – 33 of 33 results

CVE-2023-36049

Medium priority
Fixed

.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability

3 affected packages

dotnet6, dotnet7, dotnet8

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
dotnet6 Fixed Not in release Not in release
dotnet7 Fixed Not in release Not in release
dotnet8 Not affected Not in release Not in release
Show less packages

CVE-2023-36038

Medium priority
Not affected

ASP.NET Core Denial of Service Vulnerability

3 affected packages

dotnet6, dotnet7, dotnet8

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
dotnet6 Not affected Not in release Not in release
dotnet7 Not affected Not in release Not in release
dotnet8 Not affected Not in release Not in release
Show less packages

CVE-2023-44487

High priority

Some fixes available 29 of 42

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

13 affected packages

dotnet6, dotnet7, dotnet8, h2o, haproxy...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
dotnet6 Not in release Fixed Not in release Not in release
dotnet7 Not in release Fixed Not in release Not in release
dotnet8 Fixed Not affected Not in release Not in release
h2o Not affected Not affected Not affected Fixed
haproxy Not affected Not affected Not affected Fixed
netty Not affected Fixed Fixed Not affected
nghttp2 Not affected Fixed Fixed Fixed
nginx Not affected Not affected Not affected Not affected
nodejs Not affected Fixed Fixed Fixed
tomcat10 Not affected Not in release Not in release Ignored
tomcat8 Not in release Not in release Not in release Fixed
tomcat9 Not affected Fixed Fixed Fixed
trafficserver Not affected Fixed Fixed Not affected
Show all 13 packages Show less packages
  1. Previous page
  2. 1
  3. 2
  4. 3
  5. 4
  6. Next page
Export to JSON