vulnerability
Amazon Linux 2023: CVE-2025-26646: Important priority package update for dotnet8.0
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:M/Au:S/C:C/I:C/A:C) | May 14, 2025 | Jun 11, 2025 | Jul 4, 2025 |
Severity
9
CVSS
(AV:N/AC:M/Au:S/C:C/I:C/A:C)
Published
May 14, 2025
Added
Jun 11, 2025
Modified
Jul 4, 2025
Description
A flaw was found in .NET and Visual Studio. This vulnerability allows an attacker to use specially crafted input to spoof trusted content or identities, potentially misleading users or systems. This issue requires user interaction and limited privileges but can lead to unauthorized actions or escalation due to incorrect identity or content validation handling.
Solutions
amazon-linux-2023-upgrade-aspnetcore-runtime-8-0amazon-linux-2023-upgrade-aspnetcore-runtime-dbg-8-0amazon-linux-2023-upgrade-aspnetcore-targeting-pack-8-0amazon-linux-2023-upgrade-dotnetamazon-linux-2023-upgrade-dotnet8-0-debuginfoamazon-linux-2023-upgrade-dotnet8-0-debugsourceamazon-linux-2023-upgrade-dotnet-apphost-pack-8-0amazon-linux-2023-upgrade-dotnet-apphost-pack-8-0-debuginfoamazon-linux-2023-upgrade-dotnet-hostamazon-linux-2023-upgrade-dotnet-host-debuginfoamazon-linux-2023-upgrade-dotnet-hostfxr-8-0amazon-linux-2023-upgrade-dotnet-hostfxr-8-0-debuginfoamazon-linux-2023-upgrade-dotnet-runtime-8-0amazon-linux-2023-upgrade-dotnet-runtime-8-0-debuginfoamazon-linux-2023-upgrade-dotnet-runtime-dbg-8-0amazon-linux-2023-upgrade-dotnet-sdk-8-0amazon-linux-2023-upgrade-dotnet-sdk-8-0-debuginfoamazon-linux-2023-upgrade-dotnet-sdk-8-0-source-built-artifactsamazon-linux-2023-upgrade-dotnet-sdk-dbg-8-0amazon-linux-2023-upgrade-dotnet-targeting-pack-8-0amazon-linux-2023-upgrade-dotnet-templates-8-0amazon-linux-2023-upgrade-netstandard-targeting-pack-2-1
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.