Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:alpm/archlinux/dotnet-sdk@5.0.3.sdk103-2
Typealpm
Namespacearchlinux
Namedotnet-sdk
Version5.0.3.sdk103-2
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version5.0.4.sdk104-1
Latest_non_vulnerable_version6.0.0.sdk100-1
Affected_by_vulnerabilities
0
url VCID-bd3c-1sg9-wfh2
vulnerability_id VCID-bd3c-1sg9-wfh2
summary 
.NET Core Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-24112.

### Executive summary

Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 5.0, .NET Core 3.1, and .NET Core 2.1. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability.

A remote code execution vulnerability exists in .NET 5 and .NET Core due to how text encoding is performed.

### Discussion

Discussion for this issue can be found at dotnet/runtime#49377

### Mitigation factors

Microsoft has not identified any mitigating factors for this vulnerability.

### Affected software

The vulnerable package is `System.Text.Encodings.Web` . Upgrading your package and redeploying your app should be sufficient to address this vulnerability.

Vulnerable package versions:

Any .NET 5, .NET Core, or .NET Framework based application that uses the System.Text.Encodings.Web package with a vulnerable version listed below.

Package Name | Vulnerable Versions | Secure Versions
-|-|-
System.Text.Encodings.Web | 4.0.0 - 4.5.0 | 4.5.1
System.Text.Encodings.Web |  4.6.0-4.7.1 | 4.7.2
System.Text.Encodings.Web | 5.0.0 |  5.0.1


Please validate that each of the .NET versions you are using is in support. Security updates are only provided for supported .NET versions.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-26701.json
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-26701.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-26701
reference_id
reference_type
scores
0
value 0.02731
scoring_system epss
scoring_elements 0.8598
published_at 2026-04-18T12:55:00Z
1
value 0.02731
scoring_system epss
scoring_elements 0.85976
published_at 2026-04-16T12:55:00Z
2
value 0.02731
scoring_system epss
scoring_elements 0.85958
published_at 2026-04-13T12:55:00Z
3
value 0.02731
scoring_system epss
scoring_elements 0.85963
published_at 2026-04-12T12:55:00Z
4
value 0.02731
scoring_system epss
scoring_elements 0.85965
published_at 2026-04-11T12:55:00Z
5
value 0.02731
scoring_system epss
scoring_elements 0.8595
published_at 2026-04-09T12:55:00Z
6
value 0.02772
scoring_system epss
scoring_elements 0.86003
published_at 2026-04-07T12:55:00Z
7
value 0.0295
scoring_system epss
scoring_elements 0.86444
published_at 2026-04-08T12:55:00Z
8
value 0.02994
scoring_system epss
scoring_elements 0.865
published_at 2026-04-02T12:55:00Z
9
value 0.02994
scoring_system epss
scoring_elements 0.8649
published_at 2026-04-01T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-26701
2
reference_url https://github.com/dotnet/announcements/issues/178
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/dotnet/announcements/issues/178
3
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S2AZOUKMCHT2WBHR7MYDTYXWOBHZW5P5
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S2AZOUKMCHT2WBHR7MYDTYXWOBHZW5P5
4
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S2AZOUKMCHT2WBHR7MYDTYXWOBHZW5P5/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S2AZOUKMCHT2WBHR7MYDTYXWOBHZW5P5/
5
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TW3ZSJTTMZAFKGW7NJWTVVFZUYYU2SJZ
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TW3ZSJTTMZAFKGW7NJWTVVFZUYYU2SJZ
6
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TW3ZSJTTMZAFKGW7NJWTVVFZUYYU2SJZ/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TW3ZSJTTMZAFKGW7NJWTVVFZUYYU2SJZ/
7
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UBOSSX7U6BSHV5RI74FCOW4ITJ5RRJR5
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UBOSSX7U6BSHV5RI74FCOW4ITJ5RRJR5
8
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UBOSSX7U6BSHV5RI74FCOW4ITJ5RRJR5/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UBOSSX7U6BSHV5RI74FCOW4ITJ5RRJR5/
9
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WA5WQJVHUL5C4XMJTLY3C67R4WP35EF4
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WA5WQJVHUL5C4XMJTLY3C67R4WP35EF4
10
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WA5WQJVHUL5C4XMJTLY3C67R4WP35EF4/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WA5WQJVHUL5C4XMJTLY3C67R4WP35EF4/
11
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XPUKFHIGP5YNJRRFWKDJ2XRS4WTFJNNK
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XPUKFHIGP5YNJRRFWKDJ2XRS4WTFJNNK
12
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XPUKFHIGP5YNJRRFWKDJ2XRS4WTFJNNK/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XPUKFHIGP5YNJRRFWKDJ2XRS4WTFJNNK/
13
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YLFATXASXW4OV2ZBSRP4G55HJH73QPBP
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YLFATXASXW4OV2ZBSRP4G55HJH73QPBP
14
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YLFATXASXW4OV2ZBSRP4G55HJH73QPBP/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YLFATXASXW4OV2ZBSRP4G55HJH73QPBP/
15
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S2AZOUKMCHT2WBHR7MYDTYXWOBHZW5P5
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S2AZOUKMCHT2WBHR7MYDTYXWOBHZW5P5
16
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S2AZOUKMCHT2WBHR7MYDTYXWOBHZW5P5/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S2AZOUKMCHT2WBHR7MYDTYXWOBHZW5P5/
17
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TW3ZSJTTMZAFKGW7NJWTVVFZUYYU2SJZ
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TW3ZSJTTMZAFKGW7NJWTVVFZUYYU2SJZ
18
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TW3ZSJTTMZAFKGW7NJWTVVFZUYYU2SJZ/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TW3ZSJTTMZAFKGW7NJWTVVFZUYYU2SJZ/
19
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UBOSSX7U6BSHV5RI74FCOW4ITJ5RRJR5
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UBOSSX7U6BSHV5RI74FCOW4ITJ5RRJR5
20
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UBOSSX7U6BSHV5RI74FCOW4ITJ5RRJR5/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UBOSSX7U6BSHV5RI74FCOW4ITJ5RRJR5/
21
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WA5WQJVHUL5C4XMJTLY3C67R4WP35EF4
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WA5WQJVHUL5C4XMJTLY3C67R4WP35EF4
22
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WA5WQJVHUL5C4XMJTLY3C67R4WP35EF4/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WA5WQJVHUL5C4XMJTLY3C67R4WP35EF4/
23
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XPUKFHIGP5YNJRRFWKDJ2XRS4WTFJNNK
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XPUKFHIGP5YNJRRFWKDJ2XRS4WTFJNNK
24
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XPUKFHIGP5YNJRRFWKDJ2XRS4WTFJNNK/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XPUKFHIGP5YNJRRFWKDJ2XRS4WTFJNNK/
25
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YLFATXASXW4OV2ZBSRP4G55HJH73QPBP
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YLFATXASXW4OV2ZBSRP4G55HJH73QPBP
26
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YLFATXASXW4OV2ZBSRP4G55HJH73QPBP/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YLFATXASXW4OV2ZBSRP4G55HJH73QPBP/
27
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-26701
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-26701
28
reference_url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26701
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26701
29
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1933740
reference_id 1933740
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1933740
30
reference_url https://security.archlinux.org/ASA-202103-20
reference_id ASA-202103-20
reference_type
scores
url https://security.archlinux.org/ASA-202103-20
31
reference_url https://security.archlinux.org/ASA-202103-21
reference_id ASA-202103-21
reference_type
scores
url https://security.archlinux.org/ASA-202103-21
32
reference_url https://security.archlinux.org/AVG-1698
reference_id AVG-1698
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1698
33
reference_url https://github.com/advisories/GHSA-ghhp-997w-qr28
reference_id GHSA-ghhp-997w-qr28
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-ghhp-997w-qr28
34
reference_url https://access.redhat.com/errata/RHSA-2021:0787
reference_id RHSA-2021:0787
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0787
35
reference_url https://access.redhat.com/errata/RHSA-2021:0788
reference_id RHSA-2021:0788
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0788
36
reference_url https://access.redhat.com/errata/RHSA-2021:0789
reference_id RHSA-2021:0789
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0789
37
reference_url https://access.redhat.com/errata/RHSA-2021:0790
reference_id RHSA-2021:0790
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0790
38
reference_url https://access.redhat.com/errata/RHSA-2021:0793
reference_id RHSA-2021:0793
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0793
39
reference_url https://access.redhat.com/errata/RHSA-2021:0794
reference_id RHSA-2021:0794
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0794
fixed_packages
0
url pkg:alpm/archlinux/dotnet-sdk@5.0.4.sdk104-1
purl pkg:alpm/archlinux/dotnet-sdk@5.0.4.sdk104-1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/dotnet-sdk@5.0.4.sdk104-1
aliases CVE-2021-26701, GHSA-ghhp-997w-qr28
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bd3c-1sg9-wfh2
Fixing_vulnerabilities
0
url VCID-1uqg-c7j6-wkag
vulnerability_id VCID-1uqg-c7j6-wkag
summary 
.NET Core Remote Code Execution Vulnerability
A remote code execution vulnerability exists when parsing certain types of graphics files. This vulnerability only exists on systems running on MacOS or Linux. This CVE ID is unique from CVE-2021-26701.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-24112.json
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-24112.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-24112
reference_id
reference_type
scores
0
value 0.00817
scoring_system epss
scoring_elements 0.74336
published_at 2026-04-08T12:55:00Z
1
value 0.00817
scoring_system epss
scoring_elements 0.74304
published_at 2026-04-07T12:55:00Z
2
value 0.01107
scoring_system epss
scoring_elements 0.78139
published_at 2026-04-18T12:55:00Z
3
value 0.01107
scoring_system epss
scoring_elements 0.7805
published_at 2026-04-01T12:55:00Z
4
value 0.01107
scoring_system epss
scoring_elements 0.78058
published_at 2026-04-02T12:55:00Z
5
value 0.01107
scoring_system epss
scoring_elements 0.78087
published_at 2026-04-04T12:55:00Z
6
value 0.01107
scoring_system epss
scoring_elements 0.781
published_at 2026-04-09T12:55:00Z
7
value 0.01107
scoring_system epss
scoring_elements 0.78126
published_at 2026-04-11T12:55:00Z
8
value 0.01107
scoring_system epss
scoring_elements 0.78109
published_at 2026-04-12T12:55:00Z
9
value 0.01107
scoring_system epss
scoring_elements 0.78105
published_at 2026-04-13T12:55:00Z
10
value 0.01107
scoring_system epss
scoring_elements 0.7814
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-24112
2
reference_url https://github.com/dotnet/announcements/issues/176
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/dotnet/announcements/issues/176
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-24112
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-24112
4
reference_url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-24112
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-24112
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1933741
reference_id 1933741
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1933741
6
reference_url https://security.archlinux.org/ASA-202103-16
reference_id ASA-202103-16
reference_type
scores
url https://security.archlinux.org/ASA-202103-16
7
reference_url https://security.archlinux.org/ASA-202103-17
reference_id ASA-202103-17
reference_type
scores
url https://security.archlinux.org/ASA-202103-17
8
reference_url https://security.archlinux.org/AVG-1449
reference_id AVG-1449
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1449
9
reference_url https://github.com/advisories/GHSA-rxg9-xrhp-64gj
reference_id GHSA-rxg9-xrhp-64gj
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-rxg9-xrhp-64gj
fixed_packages
0
url pkg:alpm/archlinux/dotnet-sdk@5.0.3.sdk103-2
purl pkg:alpm/archlinux/dotnet-sdk@5.0.3.sdk103-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bd3c-1sg9-wfh2
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/dotnet-sdk@5.0.3.sdk103-2
aliases CVE-2021-24112, GHSA-rxg9-xrhp-64gj
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1uqg-c7j6-wkag
1
url VCID-757k-8968-xkbx
vulnerability_id VCID-757k-8968-xkbx
summary 
Denial of service in .NET core
.NET Core and Visual Studio Denial of Service Vulnerability due to a vulnerability which exists when creating HTTPS web request during X509 certificate chain building.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-1721.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-1721.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-1721
reference_id
reference_type
scores
0
value 0.09338
scoring_system epss
scoring_elements 0.92773
published_at 2026-04-18T12:55:00Z
1
value 0.09338
scoring_system epss
scoring_elements 0.92733
published_at 2026-04-01T12:55:00Z
2
value 0.09338
scoring_system epss
scoring_elements 0.9274
published_at 2026-04-02T12:55:00Z
3
value 0.09338
scoring_system epss
scoring_elements 0.92746
published_at 2026-04-04T12:55:00Z
4
value 0.09338
scoring_system epss
scoring_elements 0.92743
published_at 2026-04-07T12:55:00Z
5
value 0.09338
scoring_system epss
scoring_elements 0.92753
published_at 2026-04-08T12:55:00Z
6
value 0.09338
scoring_system epss
scoring_elements 0.92758
published_at 2026-04-09T12:55:00Z
7
value 0.09338
scoring_system epss
scoring_elements 0.92763
published_at 2026-04-11T12:55:00Z
8
value 0.09338
scoring_system epss
scoring_elements 0.92762
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-1721
2
reference_url https://github.com/dotnet/announcements/issues/175
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/dotnet/announcements/issues/175
3
reference_url https://github.com/dotnet/runtime/issues/48067
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/dotnet/runtime/issues/48067
4
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-1721
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-1721
5
reference_url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1721
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1721
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1926918
reference_id 1926918
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1926918
7
reference_url https://security.archlinux.org/ASA-202103-16
reference_id ASA-202103-16
reference_type
scores
url https://security.archlinux.org/ASA-202103-16
8
reference_url https://security.archlinux.org/ASA-202103-17
reference_id ASA-202103-17
reference_type
scores
url https://security.archlinux.org/ASA-202103-17
9
reference_url https://security.archlinux.org/AVG-1449
reference_id AVG-1449
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1449
10
reference_url https://github.com/advisories/GHSA-3gp9-h8hw-pxpw
reference_id GHSA-3gp9-h8hw-pxpw
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-3gp9-h8hw-pxpw
11
reference_url https://access.redhat.com/errata/RHSA-2021:0470
reference_id RHSA-2021:0470
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0470
12
reference_url https://access.redhat.com/errata/RHSA-2021:0471
reference_id RHSA-2021:0471
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0471
13
reference_url https://access.redhat.com/errata/RHSA-2021:0472
reference_id RHSA-2021:0472
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0472
14
reference_url https://access.redhat.com/errata/RHSA-2021:0473
reference_id RHSA-2021:0473
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0473
15
reference_url https://access.redhat.com/errata/RHSA-2021:0474
reference_id RHSA-2021:0474
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0474
16
reference_url https://access.redhat.com/errata/RHSA-2021:0476
reference_id RHSA-2021:0476
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0476
fixed_packages
0
url pkg:alpm/archlinux/dotnet-sdk@5.0.3.sdk103-2
purl pkg:alpm/archlinux/dotnet-sdk@5.0.3.sdk103-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bd3c-1sg9-wfh2
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/dotnet-sdk@5.0.3.sdk103-2
aliases CVE-2021-1721, GHSA-3gp9-h8hw-pxpw
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-757k-8968-xkbx
2
url VCID-nx74-pj4e-4fde
vulnerability_id VCID-nx74-pj4e-4fde
summary 
ASP.NET Core and Visual Studio Denial of Service Vulnerability
A denial-of-service vulnerability exists in the way Kestrel parses HTTP/2 requests. The security update addresses the vulnerability by fixing the way the Kestrel parses HTTP/2 requests. Users are advised to upgrade.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-1723.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-1723.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-1723
reference_id
reference_type
scores
0
value 0.04579
scoring_system epss
scoring_elements 0.89229
published_at 2026-04-18T12:55:00Z
1
value 0.04579
scoring_system epss
scoring_elements 0.89169
published_at 2026-04-01T12:55:00Z
2
value 0.04579
scoring_system epss
scoring_elements 0.89175
published_at 2026-04-02T12:55:00Z
3
value 0.04579
scoring_system epss
scoring_elements 0.89189
published_at 2026-04-04T12:55:00Z
4
value 0.04579
scoring_system epss
scoring_elements 0.89192
published_at 2026-04-07T12:55:00Z
5
value 0.04579
scoring_system epss
scoring_elements 0.8921
published_at 2026-04-08T12:55:00Z
6
value 0.04579
scoring_system epss
scoring_elements 0.89214
published_at 2026-04-09T12:55:00Z
7
value 0.04579
scoring_system epss
scoring_elements 0.89224
published_at 2026-04-11T12:55:00Z
8
value 0.04579
scoring_system epss
scoring_elements 0.8922
published_at 2026-04-12T12:55:00Z
9
value 0.04579
scoring_system epss
scoring_elements 0.89217
published_at 2026-04-13T12:55:00Z
10
value 0.04579
scoring_system epss
scoring_elements 0.8923
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-1723
2
reference_url https://github.com/dotnet/announcements/issues/170
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/dotnet/announcements/issues/170
3
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3L27CGRVEWUPELNJOGTCW6GLEDBECB4B
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3L27CGRVEWUPELNJOGTCW6GLEDBECB4B
4
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RRXHERXW4KR5WCP76UDW5PC7GX3YQLUW
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RRXHERXW4KR5WCP76UDW5PC7GX3YQLUW
5
reference_url https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-1723
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-1723
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-1723
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-1723
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1914258
reference_id 1914258
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1914258
8
reference_url https://security.archlinux.org/ASA-202103-16
reference_id ASA-202103-16
reference_type
scores
url https://security.archlinux.org/ASA-202103-16
9
reference_url https://security.archlinux.org/ASA-202103-17
reference_id ASA-202103-17
reference_type
scores
url https://security.archlinux.org/ASA-202103-17
10
reference_url https://security.archlinux.org/AVG-1449
reference_id AVG-1449
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1449
11
reference_url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1723
reference_id CVE-2021-1723
reference_type
scores
url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1723
12
reference_url https://github.com/advisories/GHSA-242j-2gm6-5rwx
reference_id GHSA-242j-2gm6-5rwx
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-242j-2gm6-5rwx
13
reference_url https://access.redhat.com/errata/RHSA-2021:0094
reference_id RHSA-2021:0094
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0094
14
reference_url https://access.redhat.com/errata/RHSA-2021:0095
reference_id RHSA-2021:0095
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0095
15
reference_url https://access.redhat.com/errata/RHSA-2021:0096
reference_id RHSA-2021:0096
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0096
16
reference_url https://access.redhat.com/errata/RHSA-2021:0114
reference_id RHSA-2021:0114
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0114
fixed_packages
0
url pkg:alpm/archlinux/dotnet-sdk@5.0.3.sdk103-2
purl pkg:alpm/archlinux/dotnet-sdk@5.0.3.sdk103-2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-bd3c-1sg9-wfh2
resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/dotnet-sdk@5.0.3.sdk103-2
aliases CVE-2021-1723, GHSA-242j-2gm6-5rwx
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nx74-pj4e-4fde
Risk_score4.5
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/dotnet-sdk@5.0.3.sdk103-2