vulnerability
Oracle Linux: CVE-2023-38180: ELSA-2023-4644: .NET 6.0 security, bug fix, and enhancement update (IMPORTANT) (Multiple Advisories)
Severity | CVSS | Published | Added | Modified |
---|---|---|---|---|
8 | (AV:N/AC:L/Au:N/C:N/I:N/A:C) | Aug 8, 2023 | Aug 16, 2023 | Feb 21, 2025 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Published
Aug 8, 2023
Added
Aug 16, 2023
Modified
Feb 21, 2025
Description
.NET and Visual Studio Denial of Service Vulnerability
An uncontrolled resource consumption vulnerability was found in the Kestrel component of the dotNET. When detecting a potentially malicious client, Kestrel will sometimes fail to disconnect it, resulting in denial of service.
An uncontrolled resource consumption vulnerability was found in the Kestrel component of the dotNET. When detecting a potentially malicious client, Kestrel will sometimes fail to disconnect it, resulting in denial of service.
Solution(s)
oracle-linux-upgrade-aspnetcore-runtime-6-0oracle-linux-upgrade-aspnetcore-runtime-7-0oracle-linux-upgrade-aspnetcore-targeting-pack-6-0oracle-linux-upgrade-aspnetcore-targeting-pack-7-0oracle-linux-upgrade-dotnetoracle-linux-upgrade-dotnet-apphost-pack-6-0oracle-linux-upgrade-dotnet-apphost-pack-7-0oracle-linux-upgrade-dotnet-hostoracle-linux-upgrade-dotnet-hostfxr-6-0oracle-linux-upgrade-dotnet-hostfxr-7-0oracle-linux-upgrade-dotnet-runtime-6-0oracle-linux-upgrade-dotnet-runtime-7-0oracle-linux-upgrade-dotnet-sdk-6-0oracle-linux-upgrade-dotnet-sdk-6-0-source-built-artifactsoracle-linux-upgrade-dotnet-sdk-7-0oracle-linux-upgrade-dotnet-sdk-7-0-source-built-artifactsoracle-linux-upgrade-dotnet-targeting-pack-6-0oracle-linux-upgrade-dotnet-targeting-pack-7-0oracle-linux-upgrade-dotnet-templates-6-0oracle-linux-upgrade-dotnet-templates-7-0oracle-linux-upgrade-netstandard-targeting-pack-2-1

NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.