CVE-2023-36796
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in nuget/Microsoft.NETCore.App.Runtime.win-x64
Identifiers
GHSA-h7jm-g87p-5935, CVE-2023-36796
Package Slug
nuget/Microsoft.NETCore.App.Runtime.win-x64
Vulnerability
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Description
Visual Studio Remote Code Execution Vulnerability
Affected Versions
All versions starting from 6.0.0 up to 6.0.21, all versions starting from 7.0.0 up to 7.0.10
Solution
Upgrade to versions 6.0.22, 7.0.11 or above.
Last Modified
2023-09-15
| source |