nuget
901 tracked vulnerabilities.
CVE-2023-33170
HIGH
Microsoft .NET 6.0.0 through 6.0.20 - Security Feature Bypass
Jul 11, 2023
CVSS 8.1
EPSS 0.02
CVE-2023-33127
HIGH
.NET 6.0.0-6.0.19 and Visual Studio 2022 < 17.0.23 - Elevation of Privilege
Jul 11, 2023
CVSS 8.1
EPSS 0.02
CVE-2023-33141
HIGH
Yet Another Reverse Proxy < 1.1.2 - Denial of Service
Jun 23, 2023
CVSS 7.5
EPSS 0.02
CVE-2023-32571
CRITICAL
System.Linq.Dynamic.Core 1.0.7.10-1.2.25 - Remote Code Execution via Untrusted Input Parsing
Jun 22, 2023
CVSS 9.8
EPSS 0.35
CVE-2023-29337
HIGH
NuGet Client - Remote Code Execution via TOCTOU Race Condition
Jun 14, 2023
CVSS 7.1
EPSS 0.01
CVE-2023-29331
HIGH
Microsoft .NET and .NET Framework - Denial of Service
Jun 14, 2023
CVSS 7.5
EPSS 0.03
CVE-2023-24936
HIGH
Microsoft .NET and .NET Framework - Elevation of Privilege
Jun 14, 2023
CVSS 7.5
EPSS 0.02
CVE-2023-24897
HIGH
Microsoft .NET and .NET Framework - Remote Code Execution
Jun 14, 2023
CVSS 7.8
EPSS 0.01
CVE-2023-24895
HIGH
Microsoft .NET and .NET Framework - Remote Code Execution
Jun 14, 2023
CVSS 7.8
EPSS 0.01
CVE-2023-33128
HIGH
Microsoft .NET and Visual Studio - Use-After-Free Remote Code Execution
Jun 14, 2023
CVSS 7.3
EPSS 0.01
CVE-2023-33126
HIGH
Microsoft .NET 6/7 and Visual Studio - Remote Code Execution
Jun 14, 2023
CVSS 7.3
EPSS 0.01
CVE-2023-34230
HIGH
snowflake-connector-net < 2.0.18 - Remote Code Execution via SSO URL Authentication
Jun 08, 2023
CVSS 7.3
EPSS 0.01
CVE-2023-2862
LOW
SiteServer CMS < 7.2.1 - Cross-Site Scripting via ajaxDivId Parameter
May 24, 2023
CVSS 3.5
EPSS 0.01
CVE-2023-31287
HIGH
Serenity Serene <6.7.0 - Info Disclosure
Apr 27, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-31286
MEDIUM
Serenity Serene <6.7.0 - Info Disclosure
Apr 27, 2023
CVSS 5.3
EPSS 0.01
CVE-2023-31285
MEDIUM
Serenity Serene < 6.7.0 - Stored Cross-Site Scripting via HTML File Upload
Apr 27, 2023
CVSS 6.1
EPSS 0.01
CVE-2023-30626
HIGH
Jellyfin 10.8.0-10.8.9 - Path Traversal and Arbitrary File Write via ClientLogController
Apr 24, 2023
CVSS 8.8
EPSS 0.02
CVE-2023-28260
HIGH
.NET 6.0.0-6.0.15 and 7.0.0-7.0.4 - Remote Code Execution via DLL Hijacking
Apr 11, 2023
CVSS 7.8
EPSS 0.02
CVE-2023-28638
HIGH
Snappier 1.1.0 - Buffer Overrun via Garbage Collection Compaction
Mar 27, 2023
CVSS 7.0
EPSS 0.01
CVE-2023-1289
MEDIUM
ImageMagick < 7.1.1-0 - Denial of Service via Crafted SVG File
Mar 23, 2023
CVSS 5.5
EPSS 0.01
CVE-2023-21808
HIGH
Microsoft .NET Framework and Visual Studio - Use-After-Free Remote Code Execution
Feb 14, 2023
CVSS 7.8
EPSS 0.01
CVE-2023-0493
MEDIUM
BTCPay Server < 1.7.5 - HTML Injection
Jan 26, 2023
CVSS 5.3
EPSS 0.08
CVE-2023-21893
HIGH
Oracle Data Provider for .NET <21c - RCE
Jan 18, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-21538
HIGH
.NET - Denial of Service via Untrusted Data Deserialization
Jan 10, 2023
CVSS 7.5
EPSS 0.03
CVE-2022-23535
HIGH
LiteDB < 5.0.13 - Deserialization of Untrusted Data via BsonDocument _type Field
Feb 24, 2023
CVSS 7.3
EPSS 0.01
Products
Microsoft.ChakraCore 247
Magick.NET-Q16-AnyCPU 114
Magick.NET-Q16-HDRI-AnyCPU 114
Magick.NET-Q8-AnyCPU 114
Magick.NET-Q16-HDRI-x86 113
Magick.NET-Q16-x86 113
Magick.NET-Q8-x86 112
Magick.NET-Q16-HDRI-OpenMP-arm64 111
Magick.NET-Q16-HDRI-x64 111
Magick.NET-Q16-OpenMP-arm64 111
Magick.NET-Q16-OpenMP-x64 111
Magick.NET-Q16-arm64 111
Magick.NET-Q16-HDRI-arm64 110
Magick.NET-Q8-OpenMP-arm64 110
Magick.NET-Q8-arm64 110
Magick.NET-Q16-x64 107
Magick.NET-Q8-OpenMP-x64 107
Magick.NET-Q8-x64 104
Magick.NET-Q16-HDRI-OpenMP-x64 83
Magick.NET-Q16-OpenMP-x86 58
DotNetNuke.Core 35
Microsoft.AspNetCore.App.Runtime.win-x64 26
Microsoft.AspNetCore.App.Runtime.win-x86 25
Microsoft.AspNetCore.App.Runtime.win-arm 24
Microsoft.AspNetCore.App.Runtime.linux-x64 23
Microsoft.AspNetCore.App.Runtime.linux-arm 22
Microsoft.AspNetCore.App.Runtime.linux-arm64 22
Microsoft.AspNetCore.App.Runtime.linux-musl-x64 22
Microsoft.AspNetCore.App.Runtime.osx-x64 22
Microsoft.AspNetCore.App.Runtime.win-arm64 22
Quick Filters