Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:nuget/System.Net.Http@4.1.2
purl pkg:nuget/System.Net.Http@4.1.2
Next non-vulnerable version 4.3.4
Latest non-vulnerable version 4.3.4
Risk 4.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-zdjb-98e7-6bgn
Aliases:
CVE-2018-8292
GHSA-7jgj-8wvc-jh57
Microsoft Security Advisory CVE-2018-8292: .NET Core Information Disclosure Vulnerability
4.3.4
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (4)
Vulnerability Summary Aliases
VCID-axvm-3dh9-3kf6 Improper Input Validation A denial of service vulnerability exists when the ASP.NET Core fails to properly validate web requests. NOTE: Microsoft has not commented on third-party claims that the issue is that the TextEncoder.EncodeCore function in the System.Text.Encodings.Web package in ASP.NET Core Mvc allows remote attackers to cause a denial of service by leveraging failure to properly calculate the length of 4-byte characters in the Unicode Non-Character range. CVE-2017-0247
GHSA-6xh7-4v2w-36q6
VCID-b2mg-kc6t-z7ht Improper Input Validation A spoofing vulnerability exists when the ASP.NET Core fails to properly sanitize web requests. CVE-2017-0256
GHSA-j8f4-2w4p-mhjc
VCID-j4d8-wr24-63d3 Improper Certificate Validation Microsoft .NET Framework 2.0, 3.5, 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2 and 4.7 allow an attacker to bypass Enhanced Security Usage taggings when they present a certificate that is invalid for a specific use, aka ".NET Security Feature Bypass Vulnerability." CVE-2017-0248
GHSA-ch6p-4jcm-h8vh
VCID-mrpr-pw4n-bfae Improper Input Validation An elevation of privilege vulnerability exists when the ASP.NET Core fails to properly sanitize web requests. CVE-2017-0249
GHSA-qhqf-ghgh-x2m4

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T21:21:29.332042+00:00 GitLab Importer Affected by VCID-zdjb-98e7-6bgn https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/System.Net.Http/CVE-2018-8292.yml 38.4.0
2026-04-16T20:48:44.923256+00:00 GitLab Importer Fixing VCID-mrpr-pw4n-bfae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/System.Net.Http/CVE-2017-0249.yml 38.4.0
2026-04-16T20:48:41.706488+00:00 GitLab Importer Fixing VCID-b2mg-kc6t-z7ht https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/System.Net.Http/CVE-2017-0256.yml 38.4.0
2026-04-16T20:48:32.708964+00:00 GitLab Importer Fixing VCID-axvm-3dh9-3kf6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/System.Net.Http/CVE-2017-0247.yml 38.4.0
2026-04-16T20:48:18.867954+00:00 GitLab Importer Fixing VCID-j4d8-wr24-63d3 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/System.Net.Http/CVE-2017-0248.yml 38.4.0
2026-04-11T22:33:57.891665+00:00 GitLab Importer Affected by VCID-zdjb-98e7-6bgn https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/System.Net.Http/CVE-2018-8292.yml 38.3.0
2026-04-11T21:59:40.587615+00:00 GitLab Importer Fixing VCID-mrpr-pw4n-bfae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/System.Net.Http/CVE-2017-0249.yml 38.3.0
2026-04-11T21:59:37.423344+00:00 GitLab Importer Fixing VCID-b2mg-kc6t-z7ht https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/System.Net.Http/CVE-2017-0256.yml 38.3.0
2026-04-11T21:59:27.610335+00:00 GitLab Importer Fixing VCID-axvm-3dh9-3kf6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/System.Net.Http/CVE-2017-0247.yml 38.3.0
2026-04-11T21:59:10.994249+00:00 GitLab Importer Fixing VCID-j4d8-wr24-63d3 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/System.Net.Http/CVE-2017-0248.yml 38.3.0
2026-04-02T22:45:03.654269+00:00 GitLab Importer Affected by VCID-zdjb-98e7-6bgn https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/System.Net.Http/CVE-2018-8292.yml 38.1.0
2026-04-02T22:12:51.911756+00:00 GitLab Importer Fixing VCID-mrpr-pw4n-bfae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/System.Net.Http/CVE-2017-0249.yml 38.1.0
2026-04-02T22:12:48.916217+00:00 GitLab Importer Fixing VCID-b2mg-kc6t-z7ht https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/System.Net.Http/CVE-2017-0256.yml 38.1.0
2026-04-02T22:12:39.393011+00:00 GitLab Importer Fixing VCID-axvm-3dh9-3kf6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/System.Net.Http/CVE-2017-0247.yml 38.1.0
2026-04-02T22:12:27.283444+00:00 GitLab Importer Fixing VCID-j4d8-wr24-63d3 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/System.Net.Http/CVE-2017-0248.yml 38.1.0
2026-04-01T17:03:01.550732+00:00 GitLab Importer Affected by VCID-zdjb-98e7-6bgn https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/System.Net.Http/CVE-2018-8292.yml 38.0.0
2026-04-01T15:56:50.442598+00:00 GHSA Importer Fixing VCID-j4d8-wr24-63d3 https://github.com/advisories/GHSA-ch6p-4jcm-h8vh 38.0.0
2026-04-01T15:56:48.476065+00:00 GHSA Importer Fixing VCID-axvm-3dh9-3kf6 https://github.com/advisories/GHSA-6xh7-4v2w-36q6 38.0.0
2026-04-01T15:56:47.906081+00:00 GHSA Importer Fixing VCID-b2mg-kc6t-z7ht https://github.com/advisories/GHSA-j8f4-2w4p-mhjc 38.0.0
2026-04-01T15:56:46.623255+00:00 GHSA Importer Fixing VCID-mrpr-pw4n-bfae https://github.com/advisories/GHSA-qhqf-ghgh-x2m4 38.0.0
2026-04-01T13:03:35.368234+00:00 GithubOSV Importer Fixing VCID-b2mg-kc6t-z7ht https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2018/10/GHSA-j8f4-2w4p-mhjc/GHSA-j8f4-2w4p-mhjc.json 38.0.0
2026-04-01T13:03:34.110017+00:00 GithubOSV Importer Fixing VCID-axvm-3dh9-3kf6 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2018/10/GHSA-6xh7-4v2w-36q6/GHSA-6xh7-4v2w-36q6.json 38.0.0
2026-04-01T13:03:33.520066+00:00 GithubOSV Importer Fixing VCID-mrpr-pw4n-bfae https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2018/10/GHSA-qhqf-ghgh-x2m4/GHSA-qhqf-ghgh-x2m4.json 38.0.0
2026-04-01T13:03:20.074076+00:00 GithubOSV Importer Fixing VCID-j4d8-wr24-63d3 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2018/10/GHSA-ch6p-4jcm-h8vh/GHSA-ch6p-4jcm-h8vh.json 38.0.0
2026-04-01T12:48:02.632924+00:00 GitLab Importer Fixing VCID-mrpr-pw4n-bfae https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/System.Net.Http/CVE-2017-0249.yml 38.0.0
2026-04-01T12:48:02.415365+00:00 GitLab Importer Fixing VCID-b2mg-kc6t-z7ht https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/System.Net.Http/CVE-2017-0256.yml 38.0.0
2026-04-01T12:48:01.794389+00:00 GitLab Importer Fixing VCID-axvm-3dh9-3kf6 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/System.Net.Http/CVE-2017-0247.yml 38.0.0
2026-04-01T12:48:01.005000+00:00 GitLab Importer Fixing VCID-j4d8-wr24-63d3 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/System.Net.Http/CVE-2017-0248.yml 38.0.0
2026-04-01T12:38:30.830204+00:00 RetireDotNet Importer Affected by VCID-zdjb-98e7-6bgn https://github.com/RetireNet/Packages/blob/master/Content/10.json 38.0.0