CVE-2023-36049
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in nuget/System.Net.Requests
Identifiers
GHSA-c3hf-8vgx-72rh, CVE-2023-36049
Package Slug
nuget/System.Net.Requests
Vulnerability
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Description
.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability
Affected Versions
All versions starting from 6.0.0 up to 6.0.24, all versions starting from 7.0.0 up to 7.0.13, version 8.0.0-rc.2.23480.2
Solution
Upgrade to versions 6.0.25, 8.0.0, 7.0.14 or above.
Last Modified
2023-11-16
| source |