CVE-2023-36799
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in nuget/Microsoft.NETCore.App.Runtime.linux-x64
Identifiers
GHSA-h3hv-63q5-jgpr, CVE-2023-36799
Package Slug
nuget/Microsoft.NETCore.App.Runtime.linux-x64
Vulnerability
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Description
.NET Core and Visual Studio Denial of Service Vulnerability
Affected Versions
All versions starting from 6.0.0 up to 6.0.21, all versions starting from 7.0.0 up to 7.0.10
Solution
Upgrade to versions 6.0.22, 7.0.11 or above.
Last Modified
2023-09-15
| source |