CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2021-26423 – .NET Core and Visual Studio Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2021-26423
.NET Core and Visual Studio Denial of Service Vulnerability Una Vulnerabilidad de Denegación de Servicio en .NET Core y Visual Studio An infinite loop error was found in ASP.NET when processing WebSocket frames. The exploitation of this issue can cause high CPU resource consumption. The highest threat from this vulnerability is to system availability. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26423 https://access.redhat.com/security/cve/CVE-2021-26423 https://bugzilla.redhat.com/show_bug.cgi?id=1990295 • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVSS: 5.5EPSS: 0%CPEs: 7EXPL: 0CVE-2021-34485 – .NET Core and Visual Studio Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2021-34485
.NET Core and Visual Studio Information Disclosure Vulnerability Una Vulnerabilidad de Divulgación de Información en .NET Core y Visual Studio • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34485 https://access.redhat.com/security/cve/CVE-2021-34485 https://bugzilla.redhat.com/show_bug.cgi?id=1990286 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 7.8EPSS: 0%CPEs: 13EXPL: 0CVE-2021-28322 – Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-28322
Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability Vulnerabilidad de Elevación de Privilegios del Diagnostics Hub Standard Collector Service. Este ID de CVE es diferente de CVE-2021-28313, CVE-2021-28321 Microsoft Diaghub suffers from a privilege escalation vulnerability. • http://packetstormsecurity.com/files/162251/Microsoft-DiagHub-Privilege-Escalation.html http://seclists.org/fulldisclosure/2021/Apr/40 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28322 • CWE-269: Improper Privilege Management •
CVSS: 7.8EPSS: 0%CPEs: 13EXPL: 0CVE-2021-28321 – Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-28321
Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability Vulnerabilidad de Elevación de Privilegios del Diagnostics Hub Standard Collector Service. Este ID de CVE es diferente de CVE-2021-28313, CVE-2021-28322 Microsoft Diaghub suffers from a privilege escalation vulnerability. • http://packetstormsecurity.com/files/162251/Microsoft-DiagHub-Privilege-Escalation.html http://seclists.org/fulldisclosure/2021/Apr/40 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28321 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 7.8EPSS: 0%CPEs: 13EXPL: 0CVE-2021-28313 – Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-28313
Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability Una Vulnerabilidad de elevación de privilegios del Diagnostics Hub Standard Collector Service. Este ID de CVE es diferente de CVE-2021-28321, CVE-2021-28322 Microsoft Diaghub suffers from a privilege escalation vulnerability. • http://packetstormsecurity.com/files/162251/Microsoft-DiagHub-Privilege-Escalation.html http://seclists.org/fulldisclosure/2021/Apr/40 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28313 • CWE-269: Improper Privilege Management •