VulnerableCode Package Details - pkg:nuget/Microsoft.AspNetCore.Identity@1.1.4

Search for packages

Vulnerability	Summary	Fixed by
VCID-dp82-cuxf-9yhq Aliases: CVE-2023-33170 GHSA-25c8-p796-jg6r	Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') ASP.NET and Visual Studio Security Feature Bypass Vulnerability	2.1.39 Affected by 0 other vulnerabilities. 2.2.0-preview1-35029 Affected by 0 other vulnerabilities.
VCID-vavn-24a8-e7d4 Aliases: CVE-2018-8171 GHSA-vhvh-528q-ff3p	Microsoft Security Advisory CVE-2018-8171: ASP.NET Core Security Feature Bypass Vulnerability	1.1.6 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 2.0.4 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 2.1.2 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-dp82-cuxf-9yhq
Aliases:
CVE-2023-33170
GHSA-25c8-p796-jg6r

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') ASP.NET and Visual Studio Security Feature Bypass Vulnerability

2.1.39
Affected by 0 other vulnerabilities.

2.2.0-preview1-35029
Affected by 0 other vulnerabilities.

VCID-vavn-24a8-e7d4
Aliases:
CVE-2018-8171
GHSA-vhvh-528q-ff3p

Microsoft Security Advisory CVE-2018-8171: ASP.NET Core Security Feature Bypass Vulnerability

1.1.6
Affected by 1 other vulnerability.

2.0.4
Affected by 1 other vulnerability.

2.1.2
Affected by 1 other vulnerability.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T22:33:45.025720+00:00	GitLab Importer	Affected by	VCID-dp82-cuxf-9yhq	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/Microsoft.AspNetCore.Identity/CVE-2023-33170.yml	38.4.0
2026-04-16T20:48:09.951776+00:00	GitLab Importer	Affected by	VCID-vavn-24a8-e7d4	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/Microsoft.AspNetCore.Identity/CVE-2018-8171.yml	38.4.0
2026-04-11T23:52:45.146727+00:00	GitLab Importer	Affected by	VCID-dp82-cuxf-9yhq	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/Microsoft.AspNetCore.Identity/CVE-2023-33170.yml	38.3.0
2026-04-11T21:59:01.613739+00:00	GitLab Importer	Affected by	VCID-vavn-24a8-e7d4	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/Microsoft.AspNetCore.Identity/CVE-2018-8171.yml	38.3.0
2026-04-02T23:55:54.076126+00:00	GitLab Importer	Affected by	VCID-dp82-cuxf-9yhq	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/Microsoft.AspNetCore.Identity/CVE-2023-33170.yml	38.1.0
2026-04-02T22:12:19.830413+00:00	GitLab Importer	Affected by	VCID-vavn-24a8-e7d4	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/Microsoft.AspNetCore.Identity/CVE-2018-8171.yml	38.1.0
2026-04-01T16:29:43.058392+00:00	GitLab Importer	Affected by	VCID-vavn-24a8-e7d4	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/Microsoft.AspNetCore.Identity/CVE-2018-8171.yml	38.0.0
2026-04-01T12:38:30.586638+00:00	RetireDotNet Importer	Affected by	VCID-vavn-24a8-e7d4	https://github.com/RetireNet/Packages/blob/master/Content/5.json	38.0.0