nuget

901 tracked vulnerabilities.

CVE-2017-11806 HIGH
ChakraCore and Microsoft Edge - Remote Code Execution via Memory Corruption
Oct 13, 2017
CVSS 7.5
EPSS 0.09
CVE-2017-11805 HIGH
ChakraCore and Microsoft Edge - Remote Code Execution via Memory Corruption
Oct 13, 2017
CVSS 7.5
EPSS 0.09
CVE-2017-11801 HIGH
ChakraCore < 1.7.2 - Information Disclosure via Memory Object Handling
Oct 13, 2017
CVSS 7.5
EPSS 0.06
CVE-2017-11797 HIGH
ChakraCore < 1.7.2 - Information Disclosure via Memory Handling
Oct 13, 2017
CVSS 7.5
EPSS 0.06
CVE-2017-11796 HIGH
ChakraCore and Microsoft Edge in Windows 10 1703 - Memory Corruption
Oct 13, 2017
CVSS 7.5
EPSS 0.09
CVE-2017-11792 HIGH
ChakraCore & Microsoft Edge in Windows 10 1703 - Memory Corruption
Oct 13, 2017
CVSS 7.5
EPSS 0.09
CVE-2017-15280 MEDIUM
Umbraco CMS < 7.7.3 - XML External Entity Injection via Import Document Type Dialog
Oct 12, 2017
CVSS 5.5
EPSS 0.01
CVE-2017-15279 MEDIUM
Umbraco CMS < 7.7.3 - Stored Cross-Site Scripting via Page Name Parameter
Oct 12, 2017
CVSS 5.4
EPSS 0.01
CVE-2017-8658 CRITICAL
Chakracore < 1.7.0 - Remote Code Execution via Memory Corruption
Aug 11, 2017
CVSS 9.8
EPSS 0.20
CVE-2017-8659 MEDIUM
Microsoft Edge - Information Disclosure via Chakra Scripting Engine Memory Handling
Aug 08, 2017
CVSS 4.3
EPSS 0.06
CVE-2017-9822 HIGH KEVNUCLEI
DotNetNuke < 9.1.1 - Remote Code Execution via Cookie Deserialization
Jul 20, 2017
CVSS 8.8
EPSS 0.95
CVE-2017-9785 CRITICAL
NancyFX <1.4.4, <2.0 - Deserialization
Jul 20, 2017
CVSS 9.8
EPSS 0.03
CVE-2017-8585 HIGH
Microsoft .NET Framework 4.6, 4.6.1, 4.6.2, and 4.7 - Denial of Service via Specially Crafted Requests
Jul 11, 2017
CVSS 7.5
EPSS 0.10
CVE-2017-9246 CRITICAL
New Relic .NET Agent <6.3.123.0 - SQL Injection
Jun 13, 2017
CVSS 9.8
EPSS 0.01
CVE-2017-0252 CRITICAL
Microsoft Edge - Remote Code Execution via Memory Corruption in JavaScript Engine
May 15, 2017
CVSS 9.8
EPSS 0.13
CVE-2017-0223 CRITICAL
Microsoft Edge - Remote Code Execution via Memory Corruption in JavaScript Engine
May 15, 2017
CVSS 9.8
EPSS 0.15
CVE-2017-0256 MEDIUM
ASP.NET Core MVC - Spoofing via Improper Request Sanitization
May 12, 2017
CVSS 5.3
EPSS 0.04
CVE-2017-0249 HIGH
ASP.NET Core MVC - Elevation of Privilege via Improper Web Request Sanitization
May 12, 2017
CVSS 7.3
EPSS 0.04
CVE-2017-0248 HIGH
.NET Framework Security Feature Bypass via Improper Certificate Validation
May 12, 2017
CVSS 7.5
EPSS 0.06
CVE-2017-0247 HIGH
ASP.NET Core Mvc < 1.0.4 and 1.1.x < 1.1.3 - Denial of Service via Unicode Non-Character Encoding
May 12, 2017
CVSS 7.5
EPSS 0.17
CVE-2017-0236 HIGH
Microsoft Edge - Remote Code Execution via Chakra JavaScript Engine Memory Corruption
May 12, 2017
CVSS 7.5
EPSS 0.32
CVE-2017-0235 HIGH
Microsoft Edge - Remote Code Execution via Chakra JavaScript Engine Memory Corruption
May 12, 2017
CVSS 7.5
EPSS 0.11
CVE-2017-0234 HIGH
Microsoft Edge - Remote Code Execution via Chakra JavaScript Engine Memory Corruption
May 12, 2017
CVSS 7.5
EPSS 0.38
CVE-2017-0224 HIGH
Microsoft Edge - Remote Code Execution via Scripting Engine Memory Corruption
May 12, 2017
CVSS 7.5
EPSS 0.11
CVE-2017-0208 MEDIUM
Microsoft Edge - Information Disclosure via Chakra Scripting Engine Memory Handling
Apr 12, 2017
CVSS 4.3
EPSS 0.15