Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
MAL-2025-2924
  • NuGet/sharpdefender
 Malicious code in sharpdefender (NuGet) 5 days ago
  • No fix available
MAL-2025-2923
  • NuGet/seedefender
 Malicious code in seedefender (NuGet) 5 days ago
  • No fix available
MAL-2025-2922
  • NuGet/markdown-to-html
 Malicious code in markdown-to-html (NuGet) 5 days ago
  • No fix available
GHSA-2865-hh9g-w894
  • NuGet/Microsoft.AspNetCore.Identity
  • NuGet/Microsoft.AspNetCore.App.Runtime.linux-arm
  • NuGet/Microsoft.AspNetCore.App.Runtime.linux-arm64
  • NuGet/Microsoft.AspNetCore.App.Runtime.linux-musl-arm
  • NuGet/Microsoft.AspNetCore.App.Runtime.linux-musl-arm64
  • NuGet/Microsoft.AspNetCore.App.Runtime.linux-musl-x64
  • NuGet/Microsoft.AspNetCore.App.Runtime.linux-x64
  • NuGet/Microsoft.AspNetCore.App.Runtime.osx-arm64
  • NuGet/Microsoft.AspNetCore.App.Runtime.osx-x64
  • NuGet/Microsoft.AspNetCore.App.Runtime.win-arm
  • NuGet/Microsoft.AspNetCore.App.Runtime.win-arm64
  • NuGet/Microsoft.AspNetCore.App.Runtime.win-x64
  • NuGet/Microsoft.AspNetCore.App.Runtime.win-x86
 Microsoft Security Advisory CVE-2025-24070: .NET Elevation of Privilege Vulnerability 11 Mar
  • Fix available
  • Severity - 7.0 (High)
GHSA-wx5h-wqfq-v698
  • NuGet/Umbraco.Cms.Web.Backoffice
 Umbraco Allows a Restricted Editor User to Delete Media Item or Access Unauthorized Content 11 Mar
  • Fix available
  • Severity - 4.9 (Medium)
GHSA-6ffg-mjg7-585x
  • NuGet/Umbraco.Cms.Api.Management
 Umbraco Allows Improper API Access Control to Low-Privilege Users to Data Type Functionality 11 Mar
  • Fix available
  • Severity - 4.3 (Medium)
GHSA-hpw7-8qpc-34p3
  • NuGet/dotnet-sos
  • NuGet/dotnet-dump
  • NuGet/dotnet-debugger-extensions
 Microsoft Security Advisory CVE-2025-24043 | WinDbg Remote Code Execution Vulnerability 07 Mar
  • Fix available
  • Severity - 7.5 (High)
GHSA-vc29-vg52-6643
  • NuGet/OpenTelemetry.AutoInstrumentation
 DoS Vulnerability in TraceContextPropagator.Extract - OpenTelemetry.Api 06 Mar
  • Fix available
  • Severity - 7.5 (High)
GHSA-2cmq-823j-5qj8
  • NuGet/SixLabors.ImageSharp
 Out-of-bounds Write in SixLabors ImageSharp 06 Mar
  • Fix available
  • Severity - 7.5 (High)
GHSA-8785-wc3w-h8q6
  • NuGet/OpenTelemetry.Api
 OpenTelemetry .NET has Denial of Service (DoS) Vulnerability in API Package 05 Mar
  • Fix available
  • Severity - 6.5 (Medium)
GHSA-h958-fxgg-g7w3
  • NuGet/OPCFoundation.NetStandard.Opc.Ua.Core
 Security Update for the OPC UA .NET Standard Stack 03 Mar
  • Fix available
  • Severity - 5.9 (Medium)
GHSA-4rcc-7pg7-f57f
  • NuGet/OPCFoundation.NetStandard.Opc.Ua.Bindings.Https
 Security Update for the OPC UA .NET Standard Stack 03 Mar
  • Fix available
  • Severity - 6.5 (Medium)
GHSA-m4mm-534h-5cp5
  • NuGet/AutoQueryable
 AutoQueryable leaks sensitive information 20 Feb
  • No fix available
  • Severity - 6.9 (Medium)
GHSA-qxj7-2x7w-3mpp
  • NuGet/Duende.AccessTokenManagement
 Duende.AccessTokenManagement race condition when concurrently retrieving customized Client Credentials Access Tokens 19 Feb
  • Fix available
  • Severity - 6.3 (Medium)
GHSA-vq63-8f72-f486
  • NuGet/CIE.AspNetCore.Authentication
 AspNetCore Remote Authenticator for CIE3.0 Allows SAML Response Signature Verification Bypass 18 Feb
  • Fix available
  • Severity - 9.1 (Critical)
GHSA-36h8-r92j-w9vw
  • NuGet/SPID.AspNetCore.Authentication
 The AspNetCore Remote Authenticator for SPID Allows SAML Response Signature Verification Bypass 18 Feb
  • Fix available
  • Severity - 9.1 (Critical)
Load more...