rpm package
almalinux/aspnetcore-runtime-6.0
pkg:rpm/almalinux/aspnetcore-runtime-6.0
Vulnerabilities (29)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-43485 | — | < 6.0.35-1.el8_10 | 6.0.35-1.el8_10 | Oct 8, 2024 | .NET and Visual Studio Denial of Service Vulnerability | ||
| CVE-2024-43484 | — | < 6.0.35-1.el8_10 | 6.0.35-1.el8_10 | Oct 8, 2024 | .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability | ||
| CVE-2024-43483 | — | < 6.0.35-1.el8_10 | 6.0.35-1.el8_10 | Oct 8, 2024 | .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability | ||
| CVE-2024-38095 | — | < 6.0.32-1.el8_10 | 6.0.32-1.el8_10 | Jul 9, 2024 | .NET and Visual Studio Denial of Service Vulnerability | ||
| CVE-2024-21404 | — | < 6.0.27-1.el9_3 | 6.0.27-1.el9_3 | Feb 13, 2024 | .NET Denial of Service Vulnerability | ||
| CVE-2024-21386 | — | < 6.0.27-1.el9_3 | 6.0.27-1.el9_3 | Feb 13, 2024 | .NET Denial of Service Vulnerability | ||
| CVE-2024-21319 | — | < 6.0.26-1.el9_3 | 6.0.26-1.el9_3 | Jan 9, 2024 | Microsoft Identity Denial of service vulnerability | ||
| CVE-2024-0057 | — | < 6.0.26-1.el9_3 | 6.0.26-1.el9_3 | Jan 9, 2024 | NET, .NET Framework, and Visual Studio Security Feature Bypass Vulnerability | ||
| CVE-2024-0056 | — | < 6.0.26-1.el9_3 | 6.0.26-1.el9_3 | Jan 9, 2024 | Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability | ||
| CVE-2023-36558 | — | < 6.0.25-1.el9_3 | 6.0.25-1.el9_3 | Nov 14, 2023 | ASP.NET Core Security Feature Bypass Vulnerability | ||
| CVE-2023-36049 | — | < 6.0.25-1.el9_3 | 6.0.25-1.el9_3 | Nov 14, 2023 | .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability | ||
| CVE-2023-44487 | Hig | 7.5 | KEV | < 6.0.23-1.el9_2 | 6.0.23-1.el9_2 | Oct 10, 2023 | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
| CVE-2023-36799 | — | < 6.0.22-1.el9_2 | 6.0.22-1.el9_2 | Sep 12, 2023 | .NET Core and Visual Studio Denial of Service Vulnerability | ||
| CVE-2023-38180 | — | KEV | < 6.0.21-1.el9_2 | 6.0.21-1.el9_2 | Aug 8, 2023 | .NET and Visual Studio Denial of Service Vulnerability | |
| CVE-2023-35390 | — | < 6.0.21-1.el9_2 | 6.0.21-1.el9_2 | Aug 8, 2023 | .NET and Visual Studio Remote Code Execution Vulnerability | ||
| CVE-2023-33170 | — | < 6.0.20-1.el8_8 | 6.0.20-1.el8_8 | Jul 11, 2023 | ASP.NET and Visual Studio Security Feature Bypass Vulnerability | ||
| CVE-2023-29337 | — | < 6.0.18-1.el9_2 | 6.0.18-1.el9_2 | Jun 14, 2023 | NuGet Client Remote Code Execution Vulnerability | ||
| CVE-2023-29331 | — | < 6.0.18-1.el9_2 | 6.0.18-1.el9_2 | Jun 14, 2023 | .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability | ||
| CVE-2023-24936 | — | < 6.0.18-1.el9_2 | 6.0.18-1.el9_2 | Jun 14, 2023 | .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability | ||
| CVE-2023-33128 | — | < 6.0.18-1.el9_2 | 6.0.18-1.el9_2 | Jun 13, 2023 | .NET and Visual Studio Remote Code Execution Vulnerability |
- CVE-2024-43485Oct 8, 2024affected < 6.0.35-1.el8_10fixed 6.0.35-1.el8_10
.NET and Visual Studio Denial of Service Vulnerability
- CVE-2024-43484Oct 8, 2024affected < 6.0.35-1.el8_10fixed 6.0.35-1.el8_10
.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability
- CVE-2024-43483Oct 8, 2024affected < 6.0.35-1.el8_10fixed 6.0.35-1.el8_10
.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability
- CVE-2024-38095Jul 9, 2024affected < 6.0.32-1.el8_10fixed 6.0.32-1.el8_10
.NET and Visual Studio Denial of Service Vulnerability
- CVE-2024-21404Feb 13, 2024affected < 6.0.27-1.el9_3fixed 6.0.27-1.el9_3
.NET Denial of Service Vulnerability
- CVE-2024-21386Feb 13, 2024affected < 6.0.27-1.el9_3fixed 6.0.27-1.el9_3
.NET Denial of Service Vulnerability
- CVE-2024-21319Jan 9, 2024affected < 6.0.26-1.el9_3fixed 6.0.26-1.el9_3
Microsoft Identity Denial of service vulnerability
- CVE-2024-0057Jan 9, 2024affected < 6.0.26-1.el9_3fixed 6.0.26-1.el9_3
NET, .NET Framework, and Visual Studio Security Feature Bypass Vulnerability
- CVE-2024-0056Jan 9, 2024affected < 6.0.26-1.el9_3fixed 6.0.26-1.el9_3
Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability
- CVE-2023-36558Nov 14, 2023affected < 6.0.25-1.el9_3fixed 6.0.25-1.el9_3
ASP.NET Core Security Feature Bypass Vulnerability
- CVE-2023-36049Nov 14, 2023affected < 6.0.25-1.el9_3fixed 6.0.25-1.el9_3
.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability
- affected < 6.0.23-1.el9_2fixed 6.0.23-1.el9_2
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
- CVE-2023-36799Sep 12, 2023affected < 6.0.22-1.el9_2fixed 6.0.22-1.el9_2
.NET Core and Visual Studio Denial of Service Vulnerability
- affected < 6.0.21-1.el9_2fixed 6.0.21-1.el9_2
.NET and Visual Studio Denial of Service Vulnerability
- CVE-2023-35390Aug 8, 2023affected < 6.0.21-1.el9_2fixed 6.0.21-1.el9_2
.NET and Visual Studio Remote Code Execution Vulnerability
- CVE-2023-33170Jul 11, 2023affected < 6.0.20-1.el8_8fixed 6.0.20-1.el8_8
ASP.NET and Visual Studio Security Feature Bypass Vulnerability
- CVE-2023-29337Jun 14, 2023affected < 6.0.18-1.el9_2fixed 6.0.18-1.el9_2
NuGet Client Remote Code Execution Vulnerability
- CVE-2023-29331Jun 14, 2023affected < 6.0.18-1.el9_2fixed 6.0.18-1.el9_2
.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability
- CVE-2023-24936Jun 14, 2023affected < 6.0.18-1.el9_2fixed 6.0.18-1.el9_2
.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability
- CVE-2023-33128Jun 13, 2023affected < 6.0.18-1.el9_2fixed 6.0.18-1.el9_2
.NET and Visual Studio Remote Code Execution Vulnerability
Page 1 of 2