framework.git
CVEs (11)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-29059 | Hig | 0.69 | 7.5 | 0.99 | KEV | Mar 23, 2024 | .NET Framework Information Disclosure Vulnerability | |
| CVE-2023-36788 | Hig | 0.51 | 7.8 | 0.01 | Sep 12, 2023 | .NET Framework Remote Code Execution Vulnerability | ||
| CVE-2023-29326 | Hig | 0.51 | 7.8 | 0.01 | Jun 14, 2023 | .NET Framework Remote Code Execution Vulnerability | ||
| CVE-2014-8156 | Hig | 0.51 | 7.8 | 0.00 | Sep 26, 2017 | The D-Bus security policy files in /etc/dbus-1/system.d/*.conf in fso-gsmd 0.12.0-3, fso-frameworkd 0.9.5.9+git20110512-4, and fso-usaged 0.12.0-2 as packaged in Debian, the upstream cornucopia.git (fsoaudiod, fsodatad, fsodeviced, fsogsmd, fsonetworkd, fsotdld, fsousaged) git… | ||
| CVE-2021-24111 | Hig | 0.49 | 7.5 | 0.04 | Feb 25, 2021 | .NET Framework Denial of Service Vulnerability | ||
| CVE-2023-36873 | Hig | 0.48 | 7.4 | 0.01 | Aug 8, 2023 | .NET Framework Spoofing Vulnerability | ||
| CVE-2025-56380 | Med | 0.42 | 6.5 | 0.00 | Oct 2, 2025 | Frappe Framework v15.72.4 was discovered to contain a SQL injection vulnerability via the fieldname parameter in the frappe.client.get_value API endpoint and a crafted script to the fieldname parameter | ||
| CVE-2023-32454 | Med | 0.41 | 6.3 | 0.00 | Feb 6, 2024 | DUP framework version 4.9.4.36 and prior contains insecure operation on Windows junction/Mount point vulnerability. A local malicious standard user could exploit the vulnerability to create arbitrary files, leading to denial of service | ||
| CVE-2020-16937 | Med | 0.31 | 4.7 | 0.03 | Oct 16, 2020 | An information disclosure vulnerability exists when the .NET Framework improperly handles objects in memory. An attacker who successfully exploited the vulnerability could disclose contents of an affected system's memory. To exploit the vulnerability, an authenticated… | ||
| CVE-2022-30130 | Low | 0.22 | 3.3 | 0.03 | May 10, 2022 | .NET Framework Denial of Service Vulnerability | ||
| CVE-2020-8545 | Hig | 0.00 | 7.5 | 0.01 | Feb 3, 2020 | Global.py in AIL framework 2.8 allows path traversal. |
- risk 0.69cvss 7.5epss 0.99
.NET Framework Information Disclosure Vulnerability
- risk 0.51cvss 7.8epss 0.01
.NET Framework Remote Code Execution Vulnerability
- risk 0.51cvss 7.8epss 0.01
.NET Framework Remote Code Execution Vulnerability
- risk 0.51cvss 7.8epss 0.00
The D-Bus security policy files in /etc/dbus-1/system.d/*.conf in fso-gsmd 0.12.0-3, fso-frameworkd 0.9.5.9+git20110512-4, and fso-usaged 0.12.0-2 as packaged in Debian, the upstream cornucopia.git (fsoaudiod, fsodatad, fsodeviced, fsogsmd, fsonetworkd, fsotdld, fsousaged) git…
- risk 0.49cvss 7.5epss 0.04
.NET Framework Denial of Service Vulnerability
- risk 0.48cvss 7.4epss 0.01
.NET Framework Spoofing Vulnerability
- risk 0.42cvss 6.5epss 0.00
Frappe Framework v15.72.4 was discovered to contain a SQL injection vulnerability via the fieldname parameter in the frappe.client.get_value API endpoint and a crafted script to the fieldname parameter
- risk 0.41cvss 6.3epss 0.00
DUP framework version 4.9.4.36 and prior contains insecure operation on Windows junction/Mount point vulnerability. A local malicious standard user could exploit the vulnerability to create arbitrary files, leading to denial of service
- risk 0.31cvss 4.7epss 0.03
An information disclosure vulnerability exists when the .NET Framework improperly handles objects in memory. An attacker who successfully exploited the vulnerability could disclose contents of an affected system's memory. To exploit the vulnerability, an authenticated…
- risk 0.22cvss 3.3epss 0.03
.NET Framework Denial of Service Vulnerability
- risk 0.00cvss 7.5epss 0.01
Global.py in AIL framework 2.8 allows path traversal.