- EPSS 0.19%
- Published 08.07.2025 14:31:45
- Last modified 22.07.2025 16:15:34
Weak authentication in EOL ASP.NET Core allows an unauthorized attacker to elevate privileges over a network. NOTE: This CVE affects only End Of Life (EOL) software components. The vendor, Microsoft, has indicated there will be no future updates nor...
CVE-2025-26682
- EPSS 15.21%
- Published 08.04.2025 17:24:22
- Last modified 09.07.2025 16:32:39
Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny service over a network.
- EPSS 0.14%
- Published 11.03.2025 16:58:54
- Last modified 02.07.2025 14:25:46
Weak authentication in ASP.NET Core & Visual Studio allows an unauthorized attacker to elevate privileges over a network.
CVE-2024-21404
- EPSS 2.16%
- Published 13.02.2024 18:15:59
- Last modified 21.11.2024 08:54:17
.NET Denial of Service Vulnerability
CVE-2024-21386
- EPSS 1.66%
- Published 13.02.2024 18:15:56
- Last modified 21.11.2024 08:54:15
.NET Denial of Service Vulnerability
CVE-2023-36558
- EPSS 0.32%
- Published 14.11.2023 22:15:29
- Last modified 01.01.2025 03:15:20
ASP.NET Core Security Feature Bypass Vulnerability
CVE-2023-36038
- EPSS 7.36%
- Published 14.11.2023 22:15:28
- Last modified 21.11.2024 08:09:13
ASP.NET Core Denial of Service Vulnerability
CVE-2023-44487
- EPSS 94.44%
- Published 10.10.2023 14:15:10
- Last modified 11.06.2025 17:29:54
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2023-38180
- EPSS 0.19%
- Published 08.08.2023 19:15:10
- Last modified 10.03.2025 20:30:38
.NET and Visual Studio Denial of Service Vulnerability
CVE-2023-35391
- EPSS 2.37%
- Published 08.08.2023 19:15:09
- Last modified 21.11.2024 08:08:22
ASP.NET Core SignalR and Visual Studio Information Disclosure Vulnerability