Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:rpm/redhat/dotnet7.0@7.0.107-1?arch=el9_2
purl pkg:rpm/redhat/dotnet7.0@7.0.107-1?arch=el9_2
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 4.0
Vulnerabilities affecting this package (5)
Vulnerability Summary Fixed by
VCID-2jhk-pky7-kkh2
Aliases:
CVE-2023-33128
GHSA-x469-cv7m-77r9
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') .NET and Visual Studio Remote Code Execution Vulnerability There are no reported fixed by versions.
VCID-fjrz-p8rx-5qgq
Aliases:
CVE-2023-24936
GHSA-jx7q-xxmw-44vf
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability There are no reported fixed by versions.
VCID-mde9-c1xs-bucm
Aliases:
CVE-2023-32032
dotnet: Elevation of privilege - TarFile.ExtractToDirectory ignores extraction directory argument There are no reported fixed by versions.
VCID-sv3w-aygm-pyh8
Aliases:
CVE-2023-29331
GHSA-555c-2p6r-68mm
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability There are no reported fixed by versions.
VCID-yp6p-q3tf-5qb7
Aliases:
CVE-2023-29337
GHSA-6qmf-mmc7-6c2p
NuGet Client Remote Code Execution Vulnerability There are no reported fixed by versions.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T13:53:45.701648+00:00 RedHat Importer Affected by VCID-yp6p-q3tf-5qb7 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29337.json 38.0.0
2026-04-01T13:53:45.515298+00:00 RedHat Importer Affected by VCID-2jhk-pky7-kkh2 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-33128.json 38.0.0
2026-04-01T13:53:45.365476+00:00 RedHat Importer Affected by VCID-sv3w-aygm-pyh8 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-29331.json 38.0.0
2026-04-01T13:53:45.279334+00:00 RedHat Importer Affected by VCID-mde9-c1xs-bucm https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-32032.json 38.0.0
2026-04-01T13:53:45.180639+00:00 RedHat Importer Affected by VCID-fjrz-p8rx-5qgq https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24936.json 38.0.0