CVE Vulnerabilities

CVE-2023-24936

Published: Jun 14, 2023 | Modified: Aug 01, 2023
CVSS 3.x
7.5
HIGH
Source:
NVD
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
CVSS 2.x
RedHat/V2
RedHat/V3
7.4 MODERATE
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Ubuntu
MEDIUM

.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability

Affected Software

Name Vendor Start Version End Version
.net_framework Microsoft 4.8 (including) 4.8 (including)
Dotnet6 Ubuntu devel *
Dotnet6 Ubuntu jammy *
Dotnet6 Ubuntu kinetic *
Dotnet6 Ubuntu lunar *
Dotnet6 Ubuntu upstream *
Dotnet7 Ubuntu devel *
Dotnet7 Ubuntu jammy *
Dotnet7 Ubuntu kinetic *
Dotnet7 Ubuntu lunar *
Dotnet7 Ubuntu upstream *
.NET Core on Red Hat Enterprise Linux RedHat rh-dotnet60-dotnet-0:6.0.118-1.el7_9 *
Red Hat Enterprise Linux 8 RedHat dotnet6.0-0:6.0.118-1.el8_8 *
Red Hat Enterprise Linux 8 RedHat dotnet7.0-0:7.0.107-1.el8_8 *
Red Hat Enterprise Linux 9 RedHat dotnet6.0-0:6.0.118-1.el9_2 *
Red Hat Enterprise Linux 9 RedHat dotnet7.0-0:7.0.107-1.el9_2 *

References