CVE-2023-36799
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in nuget/Microsoft.NETCore.App.Runtime.linux-arm
Identifiers
GHSA-h3hv-63q5-jgpr, CVE-2023-36799
Package Slug
nuget/Microsoft.NETCore.App.Runtime.linux-arm
Vulnerability
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Description
.NET Core and Visual Studio Denial of Service Vulnerability
Affected Versions
All versions starting from 6.0.0 up to 6.0.21, all versions starting from 7.0.0 up to 7.0.10
Solution
Upgrade to versions 6.0.22, 7.0.11 or above.
Last Modified
2023-09-15
| source |