rpm package

almalinux/aspnetcore-targeting-pack-7.0

pkg:rpm/almalinux/aspnetcore-targeting-pack-7.0

Vulnerabilities (21)

CVE	Sev	CVSS	KEV	Affected versions	Fixed in	Published	Description
CVE-2024-30046		—		< 7.0.19-1.el9_4	7.0.19-1.el9_4	May 14, 2024	Visual Studio Denial of Service Vulnerability
CVE-2024-30045		—		< 7.0.19-1.el9_4	7.0.19-1.el9_4	May 14, 2024	.NET and Visual Studio Remote Code Execution Vulnerability
CVE-2024-21392		—		< 7.0.17-1.el8_9	7.0.17-1.el8_9	Mar 12, 2024	.NET and Visual Studio Denial of Service Vulnerability
CVE-2024-21404		—		< 7.0.16-1.el9_3	7.0.16-1.el9_3	Feb 13, 2024	.NET Denial of Service Vulnerability
CVE-2024-21386		—		< 7.0.16-1.el9_3	7.0.16-1.el9_3	Feb 13, 2024	.NET Denial of Service Vulnerability
CVE-2024-21319		—		< 7.0.15-1.el9_3	7.0.15-1.el9_3	Jan 9, 2024	Microsoft Identity Denial of service vulnerability
CVE-2024-0057		—		< 7.0.15-1.el9_3	7.0.15-1.el9_3	Jan 9, 2024	NET, .NET Framework, and Visual Studio Security Feature Bypass Vulnerability
CVE-2024-0056		—		< 7.0.15-1.el9_3	7.0.15-1.el9_3	Jan 9, 2024	Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability
CVE-2023-36558		—		< 7.0.14-1.el9_3	7.0.14-1.el9_3	Nov 14, 2023	ASP.NET Core Security Feature Bypass Vulnerability
CVE-2023-36049		—		< 7.0.14-1.el9_3	7.0.14-1.el9_3	Nov 14, 2023	.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability
CVE-2023-44487	Hig	7.5	KEV	< 7.0.12-1.el8_8	7.0.12-1.el8_8	Oct 10, 2023	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2023-36799		—		< 7.0.11-1.el8_8	7.0.11-1.el8_8	Sep 12, 2023	.NET Core and Visual Studio Denial of Service Vulnerability
CVE-2023-38180		—	KEV	< 7.0.10-1.el9_2	7.0.10-1.el9_2	Aug 8, 2023	.NET and Visual Studio Denial of Service Vulnerability
CVE-2023-35390		—		< 7.0.10-1.el9_2	7.0.10-1.el9_2	Aug 8, 2023	.NET and Visual Studio Remote Code Execution Vulnerability
CVE-2023-33170		—		< 7.0.9-1.el9_2	7.0.9-1.el9_2	Jul 11, 2023	ASP.NET and Visual Studio Security Feature Bypass Vulnerability
CVE-2023-29337		—		< 7.0.7-1.el9_2	7.0.7-1.el9_2	Jun 14, 2023	NuGet Client Remote Code Execution Vulnerability
CVE-2023-29331		—		< 7.0.7-1.el9_2	7.0.7-1.el9_2	Jun 14, 2023	.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability
CVE-2023-24936		—		< 7.0.7-1.el9_2	7.0.7-1.el9_2	Jun 14, 2023	.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability
CVE-2023-33128		—		< 7.0.7-1.el9_2	7.0.7-1.el9_2	Jun 13, 2023	.NET and Visual Studio Remote Code Execution Vulnerability
CVE-2023-32032		—		< 7.0.7-1.el9_2	7.0.7-1.el9_2	Jun 13, 2023	.NET and Visual Studio Elevation of Privilege Vulnerability

CVE-2024-30046May 14, 2024
affected < 7.0.19-1.el9_4fixed 7.0.19-1.el9_4
Visual Studio Denial of Service Vulnerability
CVE-2024-30045May 14, 2024
affected < 7.0.19-1.el9_4fixed 7.0.19-1.el9_4
.NET and Visual Studio Remote Code Execution Vulnerability
CVE-2024-21392Mar 12, 2024
affected < 7.0.17-1.el8_9fixed 7.0.17-1.el8_9
.NET and Visual Studio Denial of Service Vulnerability
CVE-2024-21404Feb 13, 2024
affected < 7.0.16-1.el9_3fixed 7.0.16-1.el9_3
.NET Denial of Service Vulnerability
CVE-2024-21386Feb 13, 2024
affected < 7.0.16-1.el9_3fixed 7.0.16-1.el9_3
.NET Denial of Service Vulnerability
CVE-2024-21319Jan 9, 2024
affected < 7.0.15-1.el9_3fixed 7.0.15-1.el9_3
Microsoft Identity Denial of service vulnerability
CVE-2024-0057Jan 9, 2024
affected < 7.0.15-1.el9_3fixed 7.0.15-1.el9_3
NET, .NET Framework, and Visual Studio Security Feature Bypass Vulnerability
CVE-2024-0056Jan 9, 2024
affected < 7.0.15-1.el9_3fixed 7.0.15-1.el9_3
Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability
CVE-2023-36558Nov 14, 2023
affected < 7.0.14-1.el9_3fixed 7.0.14-1.el9_3
ASP.NET Core Security Feature Bypass Vulnerability
CVE-2023-36049Nov 14, 2023
affected < 7.0.14-1.el9_3fixed 7.0.14-1.el9_3
.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability
CVE-2023-44487HigKEVOct 10, 2023
affected < 7.0.12-1.el8_8fixed 7.0.12-1.el8_8
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2023-36799Sep 12, 2023
affected < 7.0.11-1.el8_8fixed 7.0.11-1.el8_8
.NET Core and Visual Studio Denial of Service Vulnerability
CVE-2023-38180KEVAug 8, 2023
affected < 7.0.10-1.el9_2fixed 7.0.10-1.el9_2
.NET and Visual Studio Denial of Service Vulnerability
CVE-2023-35390Aug 8, 2023
affected < 7.0.10-1.el9_2fixed 7.0.10-1.el9_2
.NET and Visual Studio Remote Code Execution Vulnerability
CVE-2023-33170Jul 11, 2023
affected < 7.0.9-1.el9_2fixed 7.0.9-1.el9_2
ASP.NET and Visual Studio Security Feature Bypass Vulnerability
CVE-2023-29337Jun 14, 2023
affected < 7.0.7-1.el9_2fixed 7.0.7-1.el9_2
NuGet Client Remote Code Execution Vulnerability
CVE-2023-29331Jun 14, 2023
affected < 7.0.7-1.el9_2fixed 7.0.7-1.el9_2
.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability
CVE-2023-24936Jun 14, 2023
affected < 7.0.7-1.el9_2fixed 7.0.7-1.el9_2
.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability
CVE-2023-33128Jun 13, 2023
affected < 7.0.7-1.el9_2fixed 7.0.7-1.el9_2
.NET and Visual Studio Remote Code Execution Vulnerability
CVE-2023-32032Jun 13, 2023
affected < 7.0.7-1.el9_2fixed 7.0.7-1.el9_2
.NET and Visual Studio Elevation of Privilege Vulnerability

Page 1 of 2