CVE-2025-36854

EPSS 0.11%
Veröffentlicht 08.09.2025 13:53:08
Zuletzt bearbeitet 08.09.2025 16:25:38
Quelle 36c7be3b-2937-45df-85ea-ca7133
Teams Watchlist Login
Unerledigt Login

A vulnerability ( CVE-2024-38229 https://www.cve.org/CVERecord ) exists in EOL ASP.NET when closing an HTTP/3 stream while application code is writing to the response body, a race condition may lead to use-after-free, resulting in Remote Code Execution.

  Per  CWE-416: Use After Free https://cwe.mitre.org/data/definitions/416.html , Use After Free is when a product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

  This issue affects EOL ASP.NET 6.0.0 <= 6.0.36 as represented in this CVE, as well as 8.0.0 <= 8.0.8, 9.0.0-preview.1.24081.5 <= 9.0.0.RC.1 as represented in  CVE-2024-38229 https://www.cve.org/CVERecord .

  Additionally, if you've deployed  self-contained applications https://docs.microsoft.com/dotnet/core/deploying/#self-contained-deployments-scd  targeting any of the impacted versions, these applications are also vulnerable and must be recompiled and redeployed.

   NOTE: This CVE only represents End Of Life (EOL) software components. The vendor, Microsoft, has indicated there will be no future updates nor support provided upon inquiry.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 5

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerMicrosoft

≫

Produkt .NET 6.0

Version <= 6.0.36

Version 6.0.0

Status affected

HerstellerMicrosoft

≫

Produkt Microsoft.AspNetCore.Identity

Default Statusunaffected

Version <= 6.0.36

Version >=6.0.0

Status affected

HerstellerMicrosoft

≫

Produkt Microsoft.AspNetCore.App.Runtime.win-arm

Default Statusunaffected

Version <= 6.0.36

Version >=6.0.0

Status affected

HerstellerMicrosoft

≫

Produkt Microsoft.AspNetCore.App.Runtime.win-arm64

Default Statusunaffected

Version <= 6.0.36

Version >=6.0.0

Status affected

HerstellerMicrosoft

≫

Produkt Microsoft.AspNetCore.App.Runtime.win-x64

Default Statusunaffected

Version <= 6.0.36

Version >=6.0.0

Status affected

HerstellerMicrosoft

≫

Produkt Microsoft.AspNetCore.App.Runtime.win-x86

Default Statusunaffected

Version <= 6.0.36

Version >=6.0.0

Status affected

HerstellerMicrosoft

≫

Produkt Microsoft.AspNetCore.App.Runtime.linux-arm

Default Statusunaffected

Version <= 6.0.36

Version >=6.0.0

Status affected

HerstellerMicrosoft

≫

Produkt Microsoft.AspNetCore.App.Runtime.linux-arm64

Default Statusunaffected

Version <= 6.0.36

Version >=6.0.0

Status affected

HerstellerMicrosoft

≫

Produkt Microsoft.AspNetCore.App.Runtime.linux-musl-arm

Default Statusunaffected

Version <= 6.0.36

Version >=6.0.0

Status affected

HerstellerMicrosoft

≫

Produkt Microsoft.AspNetCore.App.Runtime.linux-musl-arm64

Default Statusunaffected

Version <= 6.0.36

Version >=6.0.0

Status affected

HerstellerMicrosoft

≫

Produkt Microsoft.AspNetCore.App.Runtime.linux-musl-x64

Default Statusunaffected

Version <= 6.0.36

Version >=6.0.0

Status affected

HerstellerMicrosoft

≫

Produkt Microsoft.AspNetCore.App.Runtime.linux-x64

Default Statusunaffected

Version <= 6.0.36

Version >=6.0.0

Status affected

HerstellerMicrosoft

≫

Produkt Microsoft.AspNetCore.App.Runtime.osx-arm64

Default Statusunaffected

Version <= 6.0.36

Version >=6.0.0

Status affected

HerstellerMicrosoft

≫

Produkt Microsoft.AspNetCore.App.Runtime.osx-x64

Default Statusunaffected

Version <= 6.0.36

Version >=6.0.0

Status affected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.11%	0.303

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
36c7be3b-2937-45df-85ea-ca7133ea542c	8.1	2.2	5.9	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38229

https://www.herodevs.com/vulnerability-directory/cve-2024-38229

https://nvd.nist.gov/vuln/detail/CVE-2025-36854

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-36854

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-36854

EUVD