CVE-2024-38095

Опубликовано: 09 июл. 2024

Источник: redhat

CVSS3: 5.3

Описание

.NET and Visual Studio Denial of Service Vulnerability

A vulnerability was found in dotNET when Parsing X.509 Content and ObjectIdentifiers. This issue can lead to a denial of service attack.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
.NET 6.0 on Red Hat Enterprise Linux	rh-dotnet60-dotnet	Affected
Red Hat Enterprise Linux 10	dotnet8.0	Affected
Red Hat Enterprise Linux 9	dotnet7.0	Not affected
Red Hat Enterprise Linux 8	dotnet6.0	Fixed	RHSA-2024:4438	09.07.2024
Red Hat Enterprise Linux 8	dotnet8.0	Fixed	RHSA-2024:4451	10.07.2024
Red Hat Enterprise Linux 9	dotnet6.0	Fixed	RHSA-2024:4439	09.07.2024
Red Hat Enterprise Linux 9	dotnet8.0	Fixed	RHSA-2024:4450	10.07.2024

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

https://bugzilla.redhat.com/show_bug.cgi?id=2295323dotnet: DoS when parsing X.509 Content and ObjectIdentifiers

5.3 Medium

CVSS3

Связанные уязвимости

CVE-2024-38095

CVSS3: 7.5

ubuntu

12 месяцев назад

.NET and Visual Studio Denial of Service Vulnerability

CVE-2024-38095

CVSS3: 7.5

nvd

12 месяцев назад

.NET and Visual Studio Denial of Service Vulnerability

CVE-2024-38095

CVSS3: 7.5

msrc

11 месяцев назад

.NET and Visual Studio Denial of Service Vulnerability

RLSA-2024:4438

rocky

около 1 месяца назад

Moderate: dotnet6.0 security update

GHSA-447r-wph3-92pm

CVSS3: 7.5

github

12 месяцев назад

Microsoft Security Advisory CVE-2024-38095 | .NET Denial of Service Vulnerability

5.3 Medium

CVSS3