vulnerability
Amazon Linux 2023: CVE-2023-38180: Important priority package update for dotnet6.0
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:N/I:N/A:C) | 2023-08-08 | 2025-02-17 | 2025-03-11 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Published
2023-08-08
Added
2025-02-17
Modified
2025-03-11
Description
.NET and Visual Studio Denial of Service Vulnerability
An uncontrolled resource consumption vulnerability was found in the Kestrel component of the dotNET. When detecting a potentially malicious client, Kestrel will sometimes fail to disconnect it, resulting in denial of service.
An uncontrolled resource consumption vulnerability was found in the Kestrel component of the dotNET. When detecting a potentially malicious client, Kestrel will sometimes fail to disconnect it, resulting in denial of service.
Solution(s)
amazon-linux-2023-upgrade-aspnetcore-runtime-6-0amazon-linux-2023-upgrade-aspnetcore-targeting-pack-6-0amazon-linux-2023-upgrade-dotnetamazon-linux-2023-upgrade-dotnet6-0-debuginfoamazon-linux-2023-upgrade-dotnet6-0-debugsourceamazon-linux-2023-upgrade-dotnet-apphost-pack-6-0amazon-linux-2023-upgrade-dotnet-apphost-pack-6-0-debuginfoamazon-linux-2023-upgrade-dotnet-hostamazon-linux-2023-upgrade-dotnet-host-debuginfoamazon-linux-2023-upgrade-dotnet-hostfxr-6-0amazon-linux-2023-upgrade-dotnet-hostfxr-6-0-debuginfoamazon-linux-2023-upgrade-dotnet-runtime-6-0amazon-linux-2023-upgrade-dotnet-runtime-6-0-debuginfoamazon-linux-2023-upgrade-dotnet-sdk-6-0amazon-linux-2023-upgrade-dotnet-sdk-6-0-debuginfoamazon-linux-2023-upgrade-dotnet-sdk-6-0-source-built-artifactsamazon-linux-2023-upgrade-dotnet-targeting-pack-6-0amazon-linux-2023-upgrade-dotnet-templates-6-0amazon-linux-2023-upgrade-netstandard-targeting-pack-2-1
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.