rpm package
almalinux/dotnet
pkg:rpm/almalinux/dotnet
Vulnerabilities (55)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-43484 | — | < 8.0.110-1.el8_10 | 8.0.110-1.el8_10 | Oct 8, 2024 | .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability | ||
| CVE-2024-43483 | — | < 8.0.110-1.el8_10 | 8.0.110-1.el8_10 | Oct 8, 2024 | .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability | ||
| CVE-2024-38229 | — | < 8.0.110-1.el8_10 | 8.0.110-1.el8_10 | Oct 8, 2024 | .NET and Visual Studio Remote Code Execution Vulnerability | ||
| CVE-2024-38167 | — | < 8.0.108-1.el8_10 | 8.0.108-1.el8_10 | Aug 13, 2024 | .NET and Visual Studio Information Disclosure Vulnerability | ||
| CVE-2024-38095 | — | < 8.0.107-1.el8_10 | 8.0.107-1.el8_10 | Jul 9, 2024 | .NET and Visual Studio Denial of Service Vulnerability | ||
| CVE-2024-30105 | — | < 8.0.107-1.el8_10 | 8.0.107-1.el8_10 | Jul 9, 2024 | .NET and Visual Studio Denial of Service Vulnerability | ||
| CVE-2024-35264 | — | < 8.0.107-1.el8_10 | 8.0.107-1.el8_10 | Jul 9, 2024 | .NET and Visual Studio Remote Code Execution Vulnerability | ||
| CVE-2024-30046 | — | < 8.0.105-1.el8_10 | 8.0.105-1.el8_10 | May 14, 2024 | Visual Studio Denial of Service Vulnerability | ||
| CVE-2024-30045 | — | < 8.0.105-1.el8_10 | 8.0.105-1.el8_10 | May 14, 2024 | .NET and Visual Studio Remote Code Execution Vulnerability | ||
| CVE-2024-21392 | — | < 8.0.103-1.el8_9 | 8.0.103-1.el8_9 | Mar 12, 2024 | .NET and Visual Studio Denial of Service Vulnerability | ||
| CVE-2024-21404 | — | < 8.0.102-2.el8_9 | 8.0.102-2.el8_9 | Feb 13, 2024 | .NET Denial of Service Vulnerability | ||
| CVE-2024-21386 | — | < 8.0.102-2.el8_9 | 8.0.102-2.el8_9 | Feb 13, 2024 | .NET Denial of Service Vulnerability | ||
| CVE-2024-21319 | Med | 6.8 | < 8.0.101-1.el8_9 | 8.0.101-1.el8_9 | Jan 9, 2024 | Microsoft Identity Denial of service vulnerability | |
| CVE-2024-0057 | Cri | 9.1 | < 8.0.101-1.el8_9 | 8.0.101-1.el8_9 | Jan 9, 2024 | NET, .NET Framework, and Visual Studio Security Feature Bypass Vulnerability | |
| CVE-2024-0056 | Hig | 8.7 | < 8.0.101-1.el8_9 | 8.0.101-1.el8_9 | Jan 9, 2024 | Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability | |
| CVE-2023-36558 | Med | 6.2 | < 8.0.100-2.el8_9 | 8.0.100-2.el8_9 | Nov 14, 2023 | ASP.NET Core Security Feature Bypass Vulnerability | |
| CVE-2023-36049 | Hig | 7.6 | < 8.0.100-2.el8_9 | 8.0.100-2.el8_9 | Nov 14, 2023 | .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability | |
| CVE-2023-44487 | Hig | 7.5 | KEV | < 7.0.112-1.el8_8 | 7.0.112-1.el8_8 | Oct 10, 2023 | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. |
| CVE-2023-36799 | Med | 6.5 | < 7.0.111-1.el8_8 | 7.0.111-1.el8_8 | Sep 12, 2023 | .NET Core and Visual Studio Denial of Service Vulnerability | |
| CVE-2023-38180 | Hig | 7.5 | KEV | < 7.0.110-1.el8_8 | 7.0.110-1.el8_8 | Aug 8, 2023 | .NET and Visual Studio Denial of Service Vulnerability |
- CVE-2024-43484Oct 8, 2024affected < 8.0.110-1.el8_10fixed 8.0.110-1.el8_10
.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability
- CVE-2024-43483Oct 8, 2024affected < 8.0.110-1.el8_10fixed 8.0.110-1.el8_10
.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability
- CVE-2024-38229Oct 8, 2024affected < 8.0.110-1.el8_10fixed 8.0.110-1.el8_10
.NET and Visual Studio Remote Code Execution Vulnerability
- CVE-2024-38167Aug 13, 2024affected < 8.0.108-1.el8_10fixed 8.0.108-1.el8_10
.NET and Visual Studio Information Disclosure Vulnerability
- CVE-2024-38095Jul 9, 2024affected < 8.0.107-1.el8_10fixed 8.0.107-1.el8_10
.NET and Visual Studio Denial of Service Vulnerability
- CVE-2024-30105Jul 9, 2024affected < 8.0.107-1.el8_10fixed 8.0.107-1.el8_10
.NET and Visual Studio Denial of Service Vulnerability
- CVE-2024-35264Jul 9, 2024affected < 8.0.107-1.el8_10fixed 8.0.107-1.el8_10
.NET and Visual Studio Remote Code Execution Vulnerability
- CVE-2024-30046May 14, 2024affected < 8.0.105-1.el8_10fixed 8.0.105-1.el8_10
Visual Studio Denial of Service Vulnerability
- CVE-2024-30045May 14, 2024affected < 8.0.105-1.el8_10fixed 8.0.105-1.el8_10
.NET and Visual Studio Remote Code Execution Vulnerability
- CVE-2024-21392Mar 12, 2024affected < 8.0.103-1.el8_9fixed 8.0.103-1.el8_9
.NET and Visual Studio Denial of Service Vulnerability
- CVE-2024-21404Feb 13, 2024affected < 8.0.102-2.el8_9fixed 8.0.102-2.el8_9
.NET Denial of Service Vulnerability
- CVE-2024-21386Feb 13, 2024affected < 8.0.102-2.el8_9fixed 8.0.102-2.el8_9
.NET Denial of Service Vulnerability
- affected < 8.0.101-1.el8_9fixed 8.0.101-1.el8_9
Microsoft Identity Denial of service vulnerability
- affected < 8.0.101-1.el8_9fixed 8.0.101-1.el8_9
NET, .NET Framework, and Visual Studio Security Feature Bypass Vulnerability
- affected < 8.0.101-1.el8_9fixed 8.0.101-1.el8_9
Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability
- affected < 8.0.100-2.el8_9fixed 8.0.100-2.el8_9
ASP.NET Core Security Feature Bypass Vulnerability
- affected < 8.0.100-2.el8_9fixed 8.0.100-2.el8_9
.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability
- affected < 7.0.112-1.el8_8fixed 7.0.112-1.el8_8
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
- affected < 7.0.111-1.el8_8fixed 7.0.111-1.el8_8
.NET Core and Visual Studio Denial of Service Vulnerability
- affected < 7.0.110-1.el8_8fixed 7.0.110-1.el8_8
.NET and Visual Studio Denial of Service Vulnerability
Page 2 of 3