Microsoft Microsoft.Aspnetcore.App.Runtime.Linux-Musl-Arm vulnerabilities
3 known vulnerabilities affecting microsoft/microsoft.aspnetcore.app.runtime.linux-musl-arm.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH3
Vulnerabilities
Page 1 of 1
CVE-2025-36854HIGHCVSS 8.1≥ >=6.0.0, ≤ 6.0.362025-09-08
CVE-2025-36854 [HIGH] CWE-416 EOL ASP.NET 6.0 Remote Code Execution Vulnerability
EOL ASP.NET 6.0 Remote Code Execution Vulnerability
A vulnerability ( CVE-2024-38229 https://www.cve.org/CVERecord ) exists in EOL ASP.NET when closing an HTTP/3 stream while application code is writing to the response body, a race condition may lead to use-after-free, resulting in Remote Code Execution.
Per CWE-416: Use After Free https://cwe.mitre.org/data/definitions/416.html , Use After Free is when a product
cvelistv5
CVE-2025-7326HIGHCVSS 7.0≥ >=6.0.0, ≤ 6.0.362025-07-08
CVE-2025-7326 [HIGH] CWE-1390 CVE-2025-7326: Weak authentication in EOL ASP.NET Core allows an unauthorized attacker to elevate privileges over a
Weak authentication in EOL ASP.NET Core allows an unauthorized attacker to elevate privileges over a network.
NOTE: This CVE affects only End Of Life (EOL) software components. The vendor, Microsoft, has indicated there will be no future updates nor support provided upon inquiry.
cvelistv5nvd
CVE-2024-38229HIGHCVSS 8.1≥ >=6.0.0, ≤ 6.0.362024-10-08
CVE-2024-38229 [HIGH] CWE-416 CVE-2024-38229: .NET and Visual Studio Remote Code Execution Vulnerability
.NET and Visual Studio Remote Code Execution Vulnerability
nvd