apk package
wolfi/dotnet-9
pkg:apk/wolfi/dotnet-9
Vulnerabilities (5)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-21218 | — | < 9.0.114-r0 | 9.0.114-r0 | Feb 10, 2026 | Improper handling of missing special element in .NET allows an unauthorized attacker to perform spoofing over a network. | ||
| CVE-2025-55315 | — | < 9.0.111-r0 | 9.0.111-r0 | Oct 14, 2025 | Inconsistent interpretation of http requests ('http request/response smuggling') in ASP.NET Core allows an authorized attacker to bypass a security feature over a network. | ||
| CVE-2025-26646 | — | < 0 | 0 | May 13, 2025 | External control of file name or path in .NET, Visual Studio, and Build Tools for Visual Studio allows an authorized attacker to perform spoofing over a network. | ||
| CVE-2024-43498 | — | < 9.0.2-r0 | 9.0.2-r0 | Nov 12, 2024 | .NET and Visual Studio Remote Code Execution Vulnerability | ||
| CVE-2024-43499 | — | < 9.0.2-r0 | 9.0.2-r0 | Nov 12, 2024 | .NET and Visual Studio Denial of Service Vulnerability |
- CVE-2026-21218Feb 10, 2026affected < 9.0.114-r0fixed 9.0.114-r0
Improper handling of missing special element in .NET allows an unauthorized attacker to perform spoofing over a network.
- CVE-2025-55315Oct 14, 2025affected < 9.0.111-r0fixed 9.0.111-r0
Inconsistent interpretation of http requests ('http request/response smuggling') in ASP.NET Core allows an authorized attacker to bypass a security feature over a network.
- CVE-2025-26646May 13, 2025affected < 0fixed 0
External control of file name or path in .NET, Visual Studio, and Build Tools for Visual Studio allows an authorized attacker to perform spoofing over a network.
- CVE-2024-43498Nov 12, 2024affected < 9.0.2-r0fixed 9.0.2-r0
.NET and Visual Studio Remote Code Execution Vulnerability
- CVE-2024-43499Nov 12, 2024affected < 9.0.2-r0fixed 9.0.2-r0
.NET and Visual Studio Denial of Service Vulnerability