CVE-2023-36796
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in nuget/Microsoft.NETCore.App.Runtime.win-x86
Identifiers
GHSA-h7jm-g87p-5935, CVE-2023-36796
Package Slug
nuget/Microsoft.NETCore.App.Runtime.win-x86
Vulnerability
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Description
Visual Studio Remote Code Execution Vulnerability
Affected Versions
All versions starting from 6.0.0 up to 6.0.21, all versions starting from 7.0.0 up to 7.0.10
Solution
Upgrade to versions 6.0.22, 7.0.11 or above.
Last Modified
2023-09-15
| source |