CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2021-31957 – ASP.NET Core Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2021-31957
ASP.NET Core Denial of Service Vulnerability Una vulnerabilidad de Denegación de Servicio en ASP.NET A flaw was found in dotnet. The way client disconnects are handled can allow a remote, unauthenticated attacker to exploit this vulnerability to cause a denial of service against an ASP.NET Core application. The highest threat from this vulnerability is to system availability. • https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4PRVVLXXQEF4SEJOBV3VRJHGX7YHY2CG https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CVCDYIP4A6DDRT7G6P3ZW6PKNK2DNWJ2 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PMHWHRRYDHKM6BIINW5V7OCSW4SDWB4W https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VMAO4NG2OQ4PCXUQWMNSCMYWLIJJY6UY https://portal.msrc.microsoft.com/en-US/security-guidance/advis • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2021-31204 – .NET and Visual Studio Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-31204
.NET and Visual Studio Elevation of Privilege Vulnerability Una vulnerabilidad de Escalada de Privilegios de .NET y Visual Studio A flaw was found in dotnet. A .NET Core single-file application running with elevated permissions could allow an attacker to gain elevated privileges. The highest threat to this vulnerability is to confidentiality, integrity, as well as system availability. • https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4F3VM3RMPE7PNNLLI3BPCSAXITQZCFCA https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6M7KL3KTHJVQNRA3CWFUTESQJARQEHSZ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FVMWZPF4FR6JPFSNAIDIUDULHZJBVCW6 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LFXJPQUYUITJMV75YN3XIGE3KKN5GOCU https://lists.fedoraproject.org/archives/list/package-announce%40li • CWE-273: Improper Check for Dropped Privileges •
CVSS: 8.8EPSS: 1%CPEs: 3EXPL: 0CVE-2021-27068 – Visual Studio Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-27068
Visual Studio Remote Code Execution Vulnerability Una vulnerabilidad de Ejecución de Código Remota de Visual Studio • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27068 •
CVSS: 7.8EPSS: 0%CPEs: 13EXPL: 0CVE-2021-28322 – Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-28322
Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability Vulnerabilidad de Elevación de Privilegios del Diagnostics Hub Standard Collector Service. Este ID de CVE es diferente de CVE-2021-28313, CVE-2021-28321 Microsoft Diaghub suffers from a privilege escalation vulnerability. • http://packetstormsecurity.com/files/162251/Microsoft-DiagHub-Privilege-Escalation.html http://seclists.org/fulldisclosure/2021/Apr/40 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28322 • CWE-269: Improper Privilege Management •
CVSS: 7.8EPSS: 0%CPEs: 13EXPL: 0CVE-2021-28321 – Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-28321
Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability Vulnerabilidad de Elevación de Privilegios del Diagnostics Hub Standard Collector Service. Este ID de CVE es diferente de CVE-2021-28313, CVE-2021-28322 Microsoft Diaghub suffers from a privilege escalation vulnerability. • http://packetstormsecurity.com/files/162251/Microsoft-DiagHub-Privilege-Escalation.html http://seclists.org/fulldisclosure/2021/Apr/40 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28321 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •