Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:nuget/Microsoft.NETCore.App.Runtime.linux-x64@6.0.0

Type nuget

Namespace

Name Microsoft.NETCore.App.Runtime.linux-x64

Version 6.0.0

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 6.0.3

Latest_non_vulnerable_version 10.0.4

Affected_by_vulnerabilities

url VCID-6jg2-cqdk-4qej

vulnerability_id VCID-6jg2-cqdk-4qej

summary

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24936.json

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24936.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-24936

reference_id

reference_type

scores

value	0.01159
scoring_system	epss
scoring_elements	0.78894
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-24936

reference_url

https://github.com/dotnet/announcements/issues/259

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/dotnet/announcements/issues/259

reference_url

https://github.com/dotnet/runtime

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/dotnet/runtime

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2192438
reference_id	2192438
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2192438

reference_url

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24936

reference_id

CVE-2023-24936

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-29T14:48:19Z/

url

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24936

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2023-24936

reference_id

CVE-2023-24936

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2023-24936

reference_url	https://github.com/advisories/GHSA-jx7q-xxmw-44vf
reference_id	GHSA-jx7q-xxmw-44vf
reference_type
scores
url	https://github.com/advisories/GHSA-jx7q-xxmw-44vf

reference_url

https://github.com/dotnet/runtime/security/advisories/GHSA-jx7q-xxmw-44vf

reference_id

GHSA-jx7q-xxmw-44vf

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/dotnet/runtime/security/advisories/GHSA-jx7q-xxmw-44vf

reference_url	https://access.redhat.com/errata/RHSA-2023:3580
reference_id	RHSA-2023:3580
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3580

reference_url	https://access.redhat.com/errata/RHSA-2023:3581
reference_id	RHSA-2023:3581
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3581

reference_url	https://access.redhat.com/errata/RHSA-2023:3582
reference_id	RHSA-2023:3582
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3582

reference_url	https://access.redhat.com/errata/RHSA-2023:3592
reference_id	RHSA-2023:3592
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3592

reference_url	https://access.redhat.com/errata/RHSA-2023:3593
reference_id	RHSA-2023:3593
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3593

reference_url	https://usn.ubuntu.com/6161-1/
reference_id	USN-6161-1
reference_type
scores
url	https://usn.ubuntu.com/6161-1/

fixed_packages

url	pkg:nuget/Microsoft.NETCore.App.Runtime.linux-x64@6.0.18
purl	pkg:nuget/Microsoft.NETCore.App.Runtime.linux-x64@6.0.18
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.NETCore.App.Runtime.linux-x64@6.0.18

url	pkg:nuget/Microsoft.NETCore.App.Runtime.linux-x64@7.0.7
purl	pkg:nuget/Microsoft.NETCore.App.Runtime.linux-x64@7.0.7
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.NETCore.App.Runtime.linux-x64@7.0.7

aliases CVE-2023-24936, GHSA-jx7q-xxmw-44vf

risk_score 3.4

exploitability 0.5

weighted_severity 6.7

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6jg2-cqdk-4qej

url VCID-c23g-vu8z-3ycc

vulnerability_id VCID-c23g-vu8z-3ycc

summary This advisory has been marked as False-Positive and removed.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-24512

reference_id

reference_type

scores

value	0.00159
scoring_system	epss
scoring_elements	0.36567
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-24512

reference_url

https://github.com/dotnet/announcements/issues/213

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/dotnet/announcements/issues/213

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4TOGTZ2ZWDH662ZNFFSZVL3M5AJXV6JF

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4TOGTZ2ZWDH662ZNFFSZVL3M5AJXV6JF

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4TOGTZ2ZWDH662ZNFFSZVL3M5AJXV6JF/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4TOGTZ2ZWDH662ZNFFSZVL3M5AJXV6JF/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CIJGCVKLHVNLFBTEYJGWS43QG5DYJFBL

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CIJGCVKLHVNLFBTEYJGWS43QG5DYJFBL

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CIJGCVKLHVNLFBTEYJGWS43QG5DYJFBL/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CIJGCVKLHVNLFBTEYJGWS43QG5DYJFBL/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MQLM7ABVCYJLF6JRPF3M3EBXW63GNC27

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MQLM7ABVCYJLF6JRPF3M3EBXW63GNC27

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MQLM7ABVCYJLF6JRPF3M3EBXW63GNC27/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MQLM7ABVCYJLF6JRPF3M3EBXW63GNC27/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MRGSPXMZY4RM2L35FYHCXBFROLC23B2V

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MRGSPXMZY4RM2L35FYHCXBFROLC23B2V

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MRGSPXMZY4RM2L35FYHCXBFROLC23B2V/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MRGSPXMZY4RM2L35FYHCXBFROLC23B2V/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OS2Q4NPRSARP7GHLKFLIYHFOPSYDO6MK

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OS2Q4NPRSARP7GHLKFLIYHFOPSYDO6MK

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OS2Q4NPRSARP7GHLKFLIYHFOPSYDO6MK/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OS2Q4NPRSARP7GHLKFLIYHFOPSYDO6MK/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZXEQ3GQVELA2T4HNZG7VPMS2HDVXMJRG

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZXEQ3GQVELA2T4HNZG7VPMS2HDVXMJRG

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZXEQ3GQVELA2T4HNZG7VPMS2HDVXMJRG/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZXEQ3GQVELA2T4HNZG7VPMS2HDVXMJRG/

reference_url

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24512

reference_id

CVE-2022-24512

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-20T16:45:59Z/

url

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24512

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2022-24512

reference_id

CVE-2022-24512

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2022-24512

reference_url

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-24512

reference_id

CVE-2022-24512

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-24512

reference_url

https://github.com/advisories/GHSA-c6w8-7mp3-34j9

reference_id

GHSA-c6w8-7mp3-34j9

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-c6w8-7mp3-34j9

reference_url

https://github.com/dotnet/runtime/security/advisories/GHSA-c6w8-7mp3-34j9

reference_id

GHSA-c6w8-7mp3-34j9

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/dotnet/runtime/security/advisories/GHSA-c6w8-7mp3-34j9

fixed_packages

url	pkg:nuget/Microsoft.NETCore.App.Runtime.linux-x64@6.0.3
purl	pkg:nuget/Microsoft.NETCore.App.Runtime.linux-x64@6.0.3
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.NETCore.App.Runtime.linux-x64@6.0.3

aliases CVE-2022-24512, GHSA-c6w8-7mp3-34j9

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-c23g-vu8z-3ycc

url VCID-fjvh-u5ag-wqdb

vulnerability_id VCID-fjvh-u5ag-wqdb

summary

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29331.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29331.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-29331

reference_id

reference_type

scores

value	0.01128
scoring_system	epss
scoring_elements	0.78611
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-29331

reference_url

https://github.com/dotnet/announcements/issues/257

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/dotnet/announcements/issues/257

reference_url

https://github.com/dotnet/runtime

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/dotnet/runtime

reference_url

https://support.microsoft.com/kb/5025823

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://support.microsoft.com/kb/5025823

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2212617
reference_id	2212617
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2212617

reference_url

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331

reference_id

CVE-2023-29331

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:20:14Z/

url

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29331

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2023-29331

reference_id

CVE-2023-29331

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2023-29331

reference_url	https://github.com/advisories/GHSA-555c-2p6r-68mm
reference_id	GHSA-555c-2p6r-68mm
reference_type
scores
url	https://github.com/advisories/GHSA-555c-2p6r-68mm

reference_url

https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm

reference_id

GHSA-555c-2p6r-68mm

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/dotnet/runtime/security/advisories/GHSA-555c-2p6r-68mm

reference_url	https://access.redhat.com/errata/RHSA-2023:3580
reference_id	RHSA-2023:3580
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3580

reference_url	https://access.redhat.com/errata/RHSA-2023:3581
reference_id	RHSA-2023:3581
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3581

reference_url	https://access.redhat.com/errata/RHSA-2023:3582
reference_id	RHSA-2023:3582
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3582

reference_url	https://access.redhat.com/errata/RHSA-2023:3592
reference_id	RHSA-2023:3592
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3592

reference_url	https://access.redhat.com/errata/RHSA-2023:3593
reference_id	RHSA-2023:3593
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3593

reference_url	https://access.redhat.com/errata/RHSA-2023:4448
reference_id	RHSA-2023:4448
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4448

reference_url	https://access.redhat.com/errata/RHSA-2023:4449
reference_id	RHSA-2023:4449
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4449

reference_url	https://usn.ubuntu.com/6161-1/
reference_id	USN-6161-1
reference_type
scores
url	https://usn.ubuntu.com/6161-1/

fixed_packages

url	pkg:nuget/Microsoft.NETCore.App.Runtime.linux-x64@6.0.18
purl	pkg:nuget/Microsoft.NETCore.App.Runtime.linux-x64@6.0.18
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.NETCore.App.Runtime.linux-x64@6.0.18

url	pkg:nuget/Microsoft.NETCore.App.Runtime.linux-x64@7.0.7
purl	pkg:nuget/Microsoft.NETCore.App.Runtime.linux-x64@7.0.7
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.NETCore.App.Runtime.linux-x64@7.0.7

aliases CVE-2023-29331, GHSA-555c-2p6r-68mm

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fjvh-u5ag-wqdb

url VCID-sycy-t5xz-9qd8

vulnerability_id VCID-sycy-t5xz-9qd8

summary

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
.NET Core and Visual Studio Denial of Service Vulnerability

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-36799.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-36799.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-36799

reference_id

reference_type

scores

value	0.01064
scoring_system	epss
scoring_elements	0.77982
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-36799

reference_url

https://github.com/dotnet/runtime

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/dotnet/runtime

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2237317
reference_id	2237317
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2237317

reference_url

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36799

reference_id

CVE-2023-36799

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-29T16:23:47Z/

url

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36799

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2023-36799

reference_id

CVE-2023-36799

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2023-36799

reference_url	https://github.com/advisories/GHSA-h3hv-63q5-jgpr
reference_id	GHSA-h3hv-63q5-jgpr
reference_type
scores
url	https://github.com/advisories/GHSA-h3hv-63q5-jgpr

reference_url

https://github.com/dotnet/runtime/security/advisories/GHSA-h3hv-63q5-jgpr

reference_id

GHSA-h3hv-63q5-jgpr

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/dotnet/runtime/security/advisories/GHSA-h3hv-63q5-jgpr

reference_url	https://access.redhat.com/errata/RHSA-2023:5142
reference_id	RHSA-2023:5142
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5142

reference_url	https://access.redhat.com/errata/RHSA-2023:5143
reference_id	RHSA-2023:5143
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5143

reference_url	https://access.redhat.com/errata/RHSA-2023:5144
reference_id	RHSA-2023:5144
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5144

reference_url	https://access.redhat.com/errata/RHSA-2023:5145
reference_id	RHSA-2023:5145
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5145

reference_url	https://access.redhat.com/errata/RHSA-2023:5146
reference_id	RHSA-2023:5146
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5146

reference_url	https://access.redhat.com/errata/RHSA-2023:6242
reference_id	RHSA-2023:6242
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6242

reference_url	https://access.redhat.com/errata/RHSA-2023:6245
reference_id	RHSA-2023:6245
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6245

reference_url	https://access.redhat.com/errata/RHSA-2023:6246
reference_id	RHSA-2023:6246
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6246

reference_url	https://access.redhat.com/errata/RHSA-2023:6247
reference_id	RHSA-2023:6247
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6247

reference_url	https://access.redhat.com/errata/RHSA-2023:6249
reference_id	RHSA-2023:6249
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6249

reference_url	https://usn.ubuntu.com/6362-1/
reference_id	USN-6362-1
reference_type
scores
url	https://usn.ubuntu.com/6362-1/

reference_url	https://usn.ubuntu.com/6362-2/
reference_id	USN-6362-2
reference_type
scores
url	https://usn.ubuntu.com/6362-2/

reference_url	https://usn.ubuntu.com/6438-1/
reference_id	USN-6438-1
reference_type
scores
url	https://usn.ubuntu.com/6438-1/

reference_url	https://usn.ubuntu.com/6438-2/
reference_id	USN-6438-2
reference_type
scores
url	https://usn.ubuntu.com/6438-2/

fixed_packages

url	pkg:nuget/Microsoft.NETCore.App.Runtime.linux-x64@6.0.22
purl	pkg:nuget/Microsoft.NETCore.App.Runtime.linux-x64@6.0.22
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.NETCore.App.Runtime.linux-x64@6.0.22

url	pkg:nuget/Microsoft.NETCore.App.Runtime.linux-x64@7.0.11
purl	pkg:nuget/Microsoft.NETCore.App.Runtime.linux-x64@7.0.11
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.NETCore.App.Runtime.linux-x64@7.0.11

aliases CVE-2023-36799, GHSA-h3hv-63q5-jgpr

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-sycy-t5xz-9qd8

Fixing_vulnerabilities

Risk_score 3.4

Resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.NETCore.App.Runtime.linux-x64@6.0.0

Package Instance