vulnerability
Amazon Linux 2023: CVE-2023-38180: Important priority package update for dotnet6.0
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:N/I:N/A:C) | 08/08/2023 | 02/17/2025 | 03/11/2025 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Published
08/08/2023
Added
02/17/2025
Modified
03/11/2025
Description
.NET and Visual Studio Denial of Service Vulnerability
An uncontrolled resource consumption vulnerability was found in the Kestrel component of the dotNET. When detecting a potentially malicious client, Kestrel will sometimes fail to disconnect it, resulting in denial of service.
An uncontrolled resource consumption vulnerability was found in the Kestrel component of the dotNET. When detecting a potentially malicious client, Kestrel will sometimes fail to disconnect it, resulting in denial of service.
Solution(s)
amazon-linux-2023-upgrade-aspnetcore-runtime-6-0amazon-linux-2023-upgrade-aspnetcore-targeting-pack-6-0amazon-linux-2023-upgrade-dotnetamazon-linux-2023-upgrade-dotnet6-0-debuginfoamazon-linux-2023-upgrade-dotnet6-0-debugsourceamazon-linux-2023-upgrade-dotnet-apphost-pack-6-0amazon-linux-2023-upgrade-dotnet-apphost-pack-6-0-debuginfoamazon-linux-2023-upgrade-dotnet-hostamazon-linux-2023-upgrade-dotnet-host-debuginfoamazon-linux-2023-upgrade-dotnet-hostfxr-6-0amazon-linux-2023-upgrade-dotnet-hostfxr-6-0-debuginfoamazon-linux-2023-upgrade-dotnet-runtime-6-0amazon-linux-2023-upgrade-dotnet-runtime-6-0-debuginfoamazon-linux-2023-upgrade-dotnet-sdk-6-0amazon-linux-2023-upgrade-dotnet-sdk-6-0-debuginfoamazon-linux-2023-upgrade-dotnet-sdk-6-0-source-built-artifactsamazon-linux-2023-upgrade-dotnet-targeting-pack-6-0amazon-linux-2023-upgrade-dotnet-templates-6-0amazon-linux-2023-upgrade-netstandard-targeting-pack-2-1
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.