CVSS: 7.5EPSS: 1%CPEs: 8EXPL: 0CVE-2023-38180 – Microsoft .NET Core and Visual Studio Denial-of-Service Vulnerability
https://notcve.org/view.php?id=CVE-2023-38180
.NET and Visual Studio Denial of Service Vulnerability An uncontrolled resource consumption vulnerability was found in the Kestrel component of the dotNET. When detecting a potentially malicious client, Kestrel will sometimes fail to disconnect it, resulting in denial of service. Microsoft .NET Core and Visual Studio contain an unspecified vulnerability that allows for denial-of-service (DoS). • https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CL2L4WE5QRT7WEXANYXSKSU43APC5N2V https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NWVZFKTLNMNKPZ755EMRYIA6GHFOWGKY https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-38180 https://access.redhat.com/security/cve/CVE-2023-38180 https://bugzilla.redhat.com/show_bug.cgi?id=2228621 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2023-35391 – ASP.NET Core SignalR and Visual Studio Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-35391
ASP.NET Core SignalR and Visual Studio Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35391 •
CVSS: 8.8EPSS: 0%CPEs: 42EXPL: 2CVE-2023-36899 – ASP.NET Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2023-36899
ASP.NET Elevation of Privilege Vulnerability • https://github.com/d0rb/CVE-2023-36899 https://github.com/midisec/CVE-2023-36899 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36899 • CWE-20: Improper Input Validation •
CVSS: 7.4EPSS: 0%CPEs: 50EXPL: 0CVE-2023-36873 – .NET Framework Spoofing Vulnerability
https://notcve.org/view.php?id=CVE-2023-36873
.NET Framework Spoofing Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36873 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2023-38178 – .NET Core and Visual Studio Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2023-38178
.NET Core and Visual Studio Denial of Service Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-38178 • CWE-400: Uncontrolled Resource Consumption •