vulnerability

Amazon Linux 2023: CVE-2024-21386: Important priority package update for dotnet6.0

Try Surface Command
Back to search
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Published
Feb 13, 2024
Added
Feb 17, 2025
Modified
Jul 4, 2025

Description

.NET Denial of Service Vulnerability
A denial of service vulnerability is present in the .NET applications utilizing SignalR, which a malicious client can exploit. The issue arises from inadequate validation of user-supplied input in .NET. This flaw allows a remote attacker to trigger a denial of service (DoS) attack by providing specially crafted input.

Solutions

amazon-linux-2023-upgrade-aspnetcore-runtime-6-0amazon-linux-2023-upgrade-aspnetcore-targeting-pack-6-0amazon-linux-2023-upgrade-dotnetamazon-linux-2023-upgrade-dotnet6-0-debuginfoamazon-linux-2023-upgrade-dotnet6-0-debugsourceamazon-linux-2023-upgrade-dotnet-apphost-pack-6-0amazon-linux-2023-upgrade-dotnet-apphost-pack-6-0-debuginfoamazon-linux-2023-upgrade-dotnet-hostamazon-linux-2023-upgrade-dotnet-host-debuginfoamazon-linux-2023-upgrade-dotnet-hostfxr-6-0amazon-linux-2023-upgrade-dotnet-hostfxr-6-0-debuginfoamazon-linux-2023-upgrade-dotnet-runtime-6-0amazon-linux-2023-upgrade-dotnet-runtime-6-0-debuginfoamazon-linux-2023-upgrade-dotnet-sdk-6-0amazon-linux-2023-upgrade-dotnet-sdk-6-0-debuginfoamazon-linux-2023-upgrade-dotnet-sdk-6-0-source-built-artifactsamazon-linux-2023-upgrade-dotnet-targeting-pack-6-0amazon-linux-2023-upgrade-dotnet-templates-6-0amazon-linux-2023-upgrade-netstandard-targeting-pack-2-1

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today