Moderate severityNVD Advisory· Published Feb 25, 2021· Updated Aug 3, 2024
.NET Core and Visual Studio Denial of Service Vulnerability
CVE-2021-1721
Description
.NET Core and Visual Studio Denial of Service Vulnerability
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
Microsoft.NETCore.AppNuGet | >= 2.1.0, < 2.1.25 | 2.1.25 |
Microsoft.NETCore.App.Host.linux-armNuGet | >= 3.1.0, < 3.1.12 | 3.1.12 |
Microsoft.NETCore.App.Host.linux-arm64NuGet | >= 3.1.0, < 3.1.12 | 3.1.12 |
Microsoft.NETCore.App.Host.linux-musl-arm64NuGet | >= 3.1.0, < 3.1.12 | 3.1.12 |
Microsoft.NETCore.App.Host.linux-musl-x64NuGet | >= 3.1.0, < 3.1.12 | 3.1.12 |
Microsoft.NETCore.App.Host.linux-x64NuGet | >= 3.1.0, < 3.1.12 | 3.1.12 |
Microsoft.NETCore.App.Host.osx-x64NuGet | >= 3.1.0, < 3.1.12 | 3.1.12 |
Microsoft.NETCore.App.Host.rhel.6-x64NuGet | >= 3.1.0, < 3.1.12 | 3.1.12 |
Microsoft.NETCore.App.Host.win-armNuGet | >= 3.1.0, < 3.1.12 | 3.1.12 |
Microsoft.NETCore.App.Host.win-arm64NuGet | >= 3.1.0, < 3.1.12 | 3.1.12 |
Microsoft.NETCore.App.Host.win-x64NuGet | >= 3.1.0, < 3.1.12 | 3.1.12 |
Microsoft.NETCore.App.Host.win-x86NuGet | >= 3.1.0, < 3.1.12 | 3.1.12 |
Microsoft.NETCore.App.Runtime.linux-armNuGet | >= 3.1.0, < 3.1.12 | 3.1.12 |
Microsoft.NETCore.App.Runtime.linux-arm64NuGet | >= 3.1.0, < 3.1.12 | 3.1.12 |
Microsoft.NETCore.App.Runtime.linux-musl-arm64NuGet | >= 3.1.0, < 3.1.12 | 3.1.12 |
Microsoft.NETCore.App.Runtime.linux-musl-x64NuGet | >= 3.1.0, < 3.1.12 | 3.1.12 |
Microsoft.NETCore.App.Runtime.linux-x64NuGet | >= 3.1.0, < 3.1.12 | 3.1.12 |
Microsoft.NETCore.App.Runtime.osx-x64NuGet | >= 3.1.0, < 3.1.12 | 3.1.12 |
Microsoft.NETCore.App.Runtime.rhel.6-x64NuGet | >= 3.1.0, < 3.1.12 | 3.1.12 |
Microsoft.NETCore.App.Runtime.win-armNuGet | >= 3.1.0, < 3.1.12 | 3.1.12 |
Microsoft.NETCore.App.Runtime.win-arm64NuGet | >= 3.1.0, < 3.1.12 | 3.1.12 |
Microsoft.NETCore.App.Runtime.win-x64NuGet | >= 3.1.0, < 3.1.12 | 3.1.12 |
Microsoft.NETCore.App.Runtime.win-x86NuGet | >= 3.1.0, < 3.1.12 | 3.1.12 |
Microsoft.NETCore.App.Runtime.Mono.LLVM.AOT.linux-arm64NuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.Mono.LLVM.AOT.linux-x64NuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.Mono.LLVM.AOT.osx-x64NuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.Mono.LLVM.linux-arm64NuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.Mono.LLVM.linux-x64NuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.Mono.LLVM.osx-x64NuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.Mono.linux-armNuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.Mono.linux-arm64NuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.Mono.linux-musl-x64NuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.Mono.linux-x64NuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.Mono.osx-x64NuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.android-armNuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.android-arm64NuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.android-x64NuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.android-x86NuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.browser-wasmNuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.ios-armNuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.ios-x64NuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.ios-x86NuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.linux-armNuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.linux-arm64NuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.linux-musl-armNuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.linux-musl-arm64NuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.linux-musl-x64NuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.linux-x64NuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.osx-x64NuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.tvos-arm64NuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.tvos-x64NuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.win-armNuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.win-arm64NuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.win-x64NuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Microsoft.NETCore.App.Runtime.win-x86NuGet | >= 5.0.0, < 5.0.3 | 5.0.3 |
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- github.com/advisories/GHSA-3gp9-h8hw-pxpwghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2021-1721ghsaADVISORY
- github.com/dotnet/announcements/issues/175ghsaWEB
- github.com/dotnet/runtime/issues/48067ghsaWEB
- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1721ghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.