vulnerability

Oracle Linux: CVE-2026-26127: ELSA-2026-4443: .NET 9.0 security update (IMPORTANT) (Multiple Advisories)

Try Surface Command

Back to search

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:C)

Published

Mar 10, 2026

Added

Mar 13, 2026

Modified

Mar 25, 2026

Description

A flaw was found in .NET. An unauthorized attacker can exploit an out-of-bounds read vulnerability over a network, leading to a Denial of Service (DoS). This can prevent legitimate users from accessing the affected service.

Solutions

oracle-linux-upgrade-aspnetcore-runtime-10-0oracle-linux-upgrade-aspnetcore-runtime-9-0oracle-linux-upgrade-aspnetcore-runtime-dbg-10-0oracle-linux-upgrade-aspnetcore-runtime-dbg-9-0oracle-linux-upgrade-aspnetcore-targeting-pack-10-0oracle-linux-upgrade-aspnetcore-targeting-pack-9-0oracle-linux-upgrade-dotnetoracle-linux-upgrade-dotnet-apphost-pack-10-0oracle-linux-upgrade-dotnet-apphost-pack-9-0oracle-linux-upgrade-dotnet-hostoracle-linux-upgrade-dotnet-hostfxr-10-0oracle-linux-upgrade-dotnet-hostfxr-9-0oracle-linux-upgrade-dotnet-runtime-10-0oracle-linux-upgrade-dotnet-runtime-9-0oracle-linux-upgrade-dotnet-runtime-dbg-10-0oracle-linux-upgrade-dotnet-runtime-dbg-9-0oracle-linux-upgrade-dotnet-sdk-10-0oracle-linux-upgrade-dotnet-sdk-10-0-source-built-artifactsoracle-linux-upgrade-dotnet-sdk-9-0oracle-linux-upgrade-dotnet-sdk-9-0-source-built-artifactsoracle-linux-upgrade-dotnet-sdk-aot-10-0oracle-linux-upgrade-dotnet-sdk-aot-9-0oracle-linux-upgrade-dotnet-sdk-dbg-10-0oracle-linux-upgrade-dotnet-sdk-dbg-9-0oracle-linux-upgrade-dotnet-targeting-pack-10-0oracle-linux-upgrade-dotnet-targeting-pack-9-0oracle-linux-upgrade-dotnet-templates-10-0oracle-linux-upgrade-dotnet-templates-9-0oracle-linux-upgrade-netstandard-targeting-pack-2-1

References

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report