NuGet package
system.linq.dynamic.core
pkg:nuget/system.linq.dynamic.core
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-51417 | Med | 6.4 | < 1.6.0 | 1.6.0 | Jan 21, 2025 | An issue in System.Linq.Dynamic.Core before 1.6.0 allows remote access to properties on reflection types and static properties/fields. | |
| CVE-2023-32571 | — | >= 1.0.7.10, < 1.3.0 | 1.3.0 | Jun 22, 2023 | Dynamic Linq 1.0.7.10 through 1.2.25 before 1.3.0 allows attackers to execute arbitrary code and commands when untrusted input to methods including Where, Select, OrderBy is parsed. |
- affected < 1.6.0fixed 1.6.0
An issue in System.Linq.Dynamic.Core before 1.6.0 allows remote access to properties on reflection types and static properties/fields.
- CVE-2023-32571Jun 22, 2023affected >= 1.0.7.10, < 1.3.0fixed 1.3.0
Dynamic Linq 1.0.7.10 through 1.2.25 before 1.3.0 allows attackers to execute arbitrary code and commands when untrusted input to methods including Where, Select, OrderBy is parsed.