CVE Vulnerabilities

CVE-2018-8416

Published: Nov 14, 2018 | Modified: Nov 21, 2024
CVSS 3.x
6.5
MEDIUM
Source:
NVD
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
CVSS 2.x
4 MEDIUM
AV:N/AC:L/Au:S/C:N/I:P/A:N
RedHat/V2
RedHat/V3
5.5 MODERATE
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Ubuntu
LOW

A tampering vulnerability exists when .NET Core improperly handles specially crafted files, aka .NET Core Tampering Vulnerability. This affects .NET Core 2.1.

Affected Software

Name Vendor Start Version End Version
Asp.net_core Microsoft 2.1 (including) 2.1 (including)
.NET Core on Red Hat Enterprise Linux RedHat rh-dotnet21-dotnet-0:2.1.500-5.el7 *
Mono Ubuntu bionic *
Mono Ubuntu cosmic *
Mono Ubuntu disco *
Mono Ubuntu eoan *
Mono Ubuntu groovy *
Mono Ubuntu hirsute *
Mono Ubuntu impish *
Mono Ubuntu kinetic *
Mono Ubuntu lunar *
Mono Ubuntu mantic *
Mono Ubuntu trusty *
Mono Ubuntu trusty/esm *
Mono Ubuntu xenial *
Mono-reference-assemblies Ubuntu bionic *
Mono-reference-assemblies Ubuntu cosmic *
Mono-reference-assemblies Ubuntu disco *
Mono-reference-assemblies Ubuntu eoan *
Mono-reference-assemblies Ubuntu xenial *

References