threat
engine
.sh
Back
·
··:··
Home
/
Product
/
microsoft .net core
Product
microsoft .net core
32 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2022-41032
all versions
NuGet Client Elevation of Privilege Vulnerability
7.8
HIGH
CVE-2022-38013
all versions
.NET Core and Visual Studio Denial of Service Vulnerability
7.5
HIGH
CVE-2022-34716
>= 3.1 and < 3.1.28
.NET Spoofing Vulnerability
5.9
MEDIUM
CVE-2022-30184
all versions
.NET and Visual Studio Information Disclosure Vulnerability
5.5
MEDIUM
CVE-2022-29145
all versions
.NET and Visual Studio Denial of Service Vulnerability
7.5
HIGH
CVE-2022-29117
all versions
.NET and Visual Studio Denial of Service Vulnerability
7.5
HIGH
CVE-2022-23267
all versions
.NET and Visual Studio Denial of Service Vulnerability
7.5
HIGH
CVE-2022-24512
all versions
.NET and Visual Studio Remote Code Execution Vulnerability
6.3
MEDIUM
CVE-2022-24464
>= 3.1 and <= 3.1.22
.NET and Visual Studio Denial of Service Vulnerability
7.5
HIGH
CVE-2021-34485
>= 2.1 and <= 2.1.28
.NET Core and Visual Studio Information Disclosure Vulnerability
5.0
MEDIUM
CVE-2021-26423
>= 2.1 and <= 2.1.28
.NET Core and Visual Studio Denial of Service Vulnerability
7.5
HIGH
CVE-2021-31957
>= 3.1 and <= 3.1.15
ASP.NET Core Denial of Service Vulnerability
5.9
MEDIUM
CVE-2021-31204
>= 3.1 and <= 3.1.14
.NET and Visual Studio Elevation of Privilege Vulnerability
7.3
HIGH
CVE-2021-26701
>= 2.1 and < 2.1.28
.NET Core Remote Code Execution Vulnerability
8.1
HIGH
CVE-2021-24112
>= 2.1 and <= 2.1.24
.NET Core Remote Code Execution Vulnerability
8.1
HIGH
CVE-2021-1721
>= 2.1 and <= 2.1.24
.NET Core and Visual Studio Denial of Service Vulnerability
6.5
MEDIUM
CVE-2020-8927
>= 3.1 and <= 3.1.22
A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a "one-sh
5.3
MEDIUM
CVE-2020-1147
all versions
A remote code execution vulnerability exists in .NET Framework, Microsoft SharePoint, and Visual Studio when the software fails to
7.8
HIGH
CVE-2020-1108
>= 2.1 and <= 2.1.18
A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests, aka '.NET Core & .NET F
7.5
HIGH
CVE-2020-0606
all versions
A remote code execution vulnerability exists in .NET software when the software fails to check the source markup of a file.An atta
8.8
HIGH
CVE-2020-0605
all versions
A remote code execution vulnerability exists in .NET software when the software fails to check the source markup of a file.An atta
8.8
HIGH
CVE-2019-1301
all versions
A denial of service vulnerability exists when .NET Core improperly handles web requests, aka '.NET Core Denial of Service Vulnerab
7.5
HIGH
CVE-2019-0981
all versions
A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and
7.5
HIGH
CVE-2019-0980
all versions
A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and
7.5
HIGH
CVE-2019-0820
all versions
A denial of service vulnerability exists when .NET Framework and .NET Core improperly process RegEx strings, aka '.NET Framework a
7.5
HIGH
CVE-2019-0657
all versions
A vulnerability exists in certain .Net Framework API's and Visual Studio in the way they parse URL's, aka '.NET Framework and Visu
5.9
MEDIUM
CVE-2019-0545
all versions
An information disclosure vulnerability exists in .NET Framework and .NET Core which allows bypassing Cross-origin Resource Sharin
7.5
HIGH
CVE-2018-8409
>= 2.1 and < 2.1.4
A denial of service vulnerability exists when System.IO.Pipelines improperly handles requests, aka "System.IO.Pipelines Denial of
7.5
HIGH
CVE-2018-8356
all versions
A security feature bypass vulnerability exists when Microsoft .NET Framework components do not correctly validate certificates, ak
5.5
MEDIUM
CVE-2018-0765
all versions
A denial of service vulnerability exists when .NET and .NET Core improperly process XML documents, aka ".NET and .NET Core Denial
7.5
HIGH
CVE-2018-0786
all versions
Microsoft .NET Framework 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, .NET Core 1.0 and 2.0, and PowerShell
7.5
HIGH
CVE-2018-0764
all versions
Microsoft .NET Framework 1.1, 2.0, 3.0, 3.5, 3.5.1, 4, 4.5, 4.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2 and 5.7 and .NET Core 1.0. 1.1 and 2.0
7.5
HIGH
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin