Microsoft Asp.Net Core 9.0 vulnerabilities
4 known vulnerabilities affecting microsoft/asp.net_core_9.0.
Total CVEs
4
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH3
Vulnerabilities
Page 1 of 1
CVE-2026-26130HIGHCVSS 7.5≥ 9.0, < 9.0.142026-03-10
CVE-2026-26130 [HIGH] CWE-770 CVE-2026-26130: Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker
Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny service over a network.
cvelistv5nvd
CVE-2025-55315CRITICALCVSS 9.9PoC≥ 9.0, < 9.0.102025-10-14
CVE-2025-55315 [CRITICAL] CWE-444 CVE-2025-55315: Inconsistent interpretation of http requests ('http request/response smuggling') in ASP.NET Core all
Inconsistent interpretation of http requests ('http request/response smuggling') in ASP.NET Core allows an authorized attacker to bypass a security feature over a network.
cvelistv5nvd
CVE-2025-26682HIGHCVSS 7.5≥ 9.0, < 9.0.42025-04-08
CVE-2025-26682 [HIGH] CWE-770 CVE-2025-26682: Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker
Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny service over a network.
cvelistv5nvd
CVE-2025-24070HIGHCVSS 7.0≥ 9.0, < 9.0.32025-03-11
CVE-2025-24070 [HIGH] CWE-1390 CVE-2025-24070: Weak authentication in ASP.NET Core & Visual Studio allows an unauthorized attacker to elevate p
Weak authentication in ASP.NET Core & Visual Studio allows an unauthorized attacker to elevate privileges over a network.
cvelistv5nvd