nuget

901 tracked vulnerabilities.

CVE-2023-33170 HIGH
Microsoft .NET 6.0.0 through 6.0.20 - Security Feature Bypass
Jul 11, 2023
CVSS 8.1
EPSS 0.02
CVE-2023-33127 HIGH
.NET 6.0.0-6.0.19 and Visual Studio 2022 < 17.0.23 - Elevation of Privilege
Jul 11, 2023
CVSS 8.1
EPSS 0.02
CVE-2023-33141 HIGH
Yet Another Reverse Proxy < 1.1.2 - Denial of Service
Jun 23, 2023
CVSS 7.5
EPSS 0.02
CVE-2023-32571 CRITICAL
System.Linq.Dynamic.Core 1.0.7.10-1.2.25 - Remote Code Execution via Untrusted Input Parsing
Jun 22, 2023
CVSS 9.8
EPSS 0.35
CVE-2023-29337 HIGH
NuGet Client - Remote Code Execution via TOCTOU Race Condition
Jun 14, 2023
CVSS 7.1
EPSS 0.01
CVE-2023-29331 HIGH
Microsoft .NET and .NET Framework - Denial of Service
Jun 14, 2023
CVSS 7.5
EPSS 0.03
CVE-2023-24936 HIGH
Microsoft .NET and .NET Framework - Elevation of Privilege
Jun 14, 2023
CVSS 7.5
EPSS 0.02
CVE-2023-24897 HIGH
Microsoft .NET and .NET Framework - Remote Code Execution
Jun 14, 2023
CVSS 7.8
EPSS 0.01
CVE-2023-24895 HIGH
Microsoft .NET and .NET Framework - Remote Code Execution
Jun 14, 2023
CVSS 7.8
EPSS 0.01
CVE-2023-33128 HIGH
Microsoft .NET and Visual Studio - Use-After-Free Remote Code Execution
Jun 14, 2023
CVSS 7.3
EPSS 0.01
CVE-2023-33126 HIGH
Microsoft .NET 6/7 and Visual Studio - Remote Code Execution
Jun 14, 2023
CVSS 7.3
EPSS 0.01
CVE-2023-34230 HIGH
snowflake-connector-net < 2.0.18 - Remote Code Execution via SSO URL Authentication
Jun 08, 2023
CVSS 7.3
EPSS 0.01
CVE-2023-2862 LOW
SiteServer CMS < 7.2.1 - Cross-Site Scripting via ajaxDivId Parameter
May 24, 2023
CVSS 3.5
EPSS 0.01
CVE-2023-31287 HIGH
Serenity Serene <6.7.0 - Info Disclosure
Apr 27, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-31286 MEDIUM
Serenity Serene <6.7.0 - Info Disclosure
Apr 27, 2023
CVSS 5.3
EPSS 0.01
CVE-2023-31285 MEDIUM
Serenity Serene < 6.7.0 - Stored Cross-Site Scripting via HTML File Upload
Apr 27, 2023
CVSS 6.1
EPSS 0.01
CVE-2023-30626 HIGH
Jellyfin 10.8.0-10.8.9 - Path Traversal and Arbitrary File Write via ClientLogController
Apr 24, 2023
CVSS 8.8
EPSS 0.02
CVE-2023-28260 HIGH
.NET 6.0.0-6.0.15 and 7.0.0-7.0.4 - Remote Code Execution via DLL Hijacking
Apr 11, 2023
CVSS 7.8
EPSS 0.02
CVE-2023-28638 HIGH
Snappier 1.1.0 - Buffer Overrun via Garbage Collection Compaction
Mar 27, 2023
CVSS 7.0
EPSS 0.01
CVE-2023-1289 MEDIUM
ImageMagick < 7.1.1-0 - Denial of Service via Crafted SVG File
Mar 23, 2023
CVSS 5.5
EPSS 0.01
CVE-2023-21808 HIGH
Microsoft .NET Framework and Visual Studio - Use-After-Free Remote Code Execution
Feb 14, 2023
CVSS 7.8
EPSS 0.01
CVE-2023-0493 MEDIUM
BTCPay Server < 1.7.5 - HTML Injection
Jan 26, 2023
CVSS 5.3
EPSS 0.08
CVE-2023-21893 HIGH
Oracle Data Provider for .NET <21c - RCE
Jan 18, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-21538 HIGH
.NET - Denial of Service via Untrusted Data Deserialization
Jan 10, 2023
CVSS 7.5
EPSS 0.03
CVE-2022-23535 HIGH
LiteDB < 5.0.13 - Deserialization of Untrusted Data via BsonDocument _type Field
Feb 24, 2023
CVSS 7.3
EPSS 0.01