VulnerableCode Package Details - pkg:nuget/Microsoft.NETCore.App.Runtime.browser-wasm@5.0.3

Search for packages

Vulnerability	Summary	Fixed by
VCID-69ua-s6h2-3uhc Aliases: BIT-brotli-2020-8927 BIT-dotnet-2020-8927 BIT-dotnet-sdk-2020-8927 BIT-powershell-2020-8927 CVE-2020-36846 CVE-2020-8927 GHSA-5v8v-66v8-mwm7 GO-2025-3726 PYSEC-2020-29 RUSTSEC-2021-0131 RUSTSEC-2021-0132	A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a "one-shot" decompression request to a script can trigger a crash, which happens when copying over chunks of data larger than 2 GiB. It is recommended to update your Brotli library to 1.0.8 or later. If one cannot update, we recommend to use the "streaming" API as opposed to the "one-shot" API, and impose chunk size limits.	5.0.15 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-69ua-s6h2-3uhc
Aliases:
BIT-brotli-2020-8927
BIT-dotnet-2020-8927
BIT-dotnet-sdk-2020-8927
BIT-powershell-2020-8927
CVE-2020-36846
CVE-2020-8927
GHSA-5v8v-66v8-mwm7
GO-2025-3726
PYSEC-2020-29
RUSTSEC-2021-0131
RUSTSEC-2021-0132

A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a "one-shot" decompression request to a script can trigger a crash, which happens when copying over chunks of data larger than 2 GiB. It is recommended to update your Brotli library to 1.0.8 or later. If one cannot update, we recommend to use the "streaming" API as opposed to the "one-shot" API, and impose chunk size limits.

5.0.15
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
VCID-757k-8968-xkbx	Denial of service in .NET core .NET Core and Visual Studio Denial of Service Vulnerability due to a vulnerability which exists when creating HTTPS web request during X509 certificate chain building.	CVE-2021-1721 GHSA-3gp9-h8hw-pxpw

Vulnerability

Summary

Aliases

VCID-757k-8968-xkbx

Denial of service in .NET core .NET Core and Visual Studio Denial of Service Vulnerability due to a vulnerability which exists when creating HTTPS web request during X509 certificate chain building.

CVE-2021-1721
GHSA-3gp9-h8hw-pxpw

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-11T23:13:44.428821+00:00	GitLab Importer	Fixing	VCID-757k-8968-xkbx	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/Microsoft.NETCore.App.Runtime.browser-wasm/CVE-2021-1721.yml	38.3.0
2026-04-11T23:11:00.615086+00:00	GitLab Importer	Affected by	VCID-69ua-s6h2-3uhc	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/Microsoft.NETCore.App.Runtime.browser-wasm/CVE-2020-8927.yml	38.3.0
2026-04-02T23:21:53.571606+00:00	GitLab Importer	Fixing	VCID-757k-8968-xkbx	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/Microsoft.NETCore.App.Runtime.browser-wasm/CVE-2021-1721.yml	38.1.0
2026-04-02T23:19:31.063286+00:00	GitLab Importer	Affected by	VCID-69ua-s6h2-3uhc	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/Microsoft.NETCore.App.Runtime.browser-wasm/CVE-2020-8927.yml	38.1.0
2026-04-01T17:42:47.012062+00:00	GitLab Importer	Fixing	VCID-757k-8968-xkbx	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/Microsoft.NETCore.App.Runtime.browser-wasm/CVE-2021-1721.yml	38.0.0
2026-04-01T17:40:01.099024+00:00	GitLab Importer	Affected by	VCID-69ua-s6h2-3uhc	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/Microsoft.NETCore.App.Runtime.browser-wasm/CVE-2020-8927.yml	38.0.0
2026-04-01T16:01:59.352274+00:00	GHSA Importer	Fixing	VCID-757k-8968-xkbx	https://github.com/advisories/GHSA-3gp9-h8hw-pxpw	38.0.0
2026-04-01T13:07:57.465448+00:00	GithubOSV Importer	Fixing	VCID-757k-8968-xkbx	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-3gp9-h8hw-pxpw/GHSA-3gp9-h8hw-pxpw.json	38.0.0