Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/53175?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/53175?format=api", "vulnerability_id": "VCID-naj1-hh3a-q7ej", "summary": "Duplicate Advisory: .NET Information Disclosure Vulnerability\n# Duplicate Advisory\nThis advisory has been withdrawn because it is a duplicate of GHSA-vh55-786g-wjwj. This link is maintained to preserve external references.\n\n# Original Description\nMicrosoft is releasing this security advisory to provide information about a vulnerability in .NET Core 3.1 and .NET 6.0. An information disclosure vulnerability exists in .NET Core 3.1 and .NET 6.0 that could lead to unauthorized access of privileged information.\n\n## Affected software\n\n* Any .NET 6.0 application running on .NET 6.0.7 or earlier.\n* Any .NET Core 3.1 applicaiton running on .NET Core 3.1.27 or earlier.\n\n## Patches\n\n* If you're using .NET 6.0, you should download and install Runtime 6.0.8 or SDK 6.0.108 (for Visual Studio 2022 v17.1) from https://dotnet.microsoft.com/download/dotnet-core/6.0.\n* If you're using .NET Core 3.1, you should download and install Runtime 3.1.28 (for Visual Studio 2019 v16.9) from https://dotnet.microsoft.com/download/dotnet-core/3.1.", "aliases": [ { "alias": "GHSA-2m65-m22p-9wjw" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/54545?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.App.Runtime.linux-musl-arm@6.0.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dp82-cuxf-9yhq" }, { "vulnerability": "VCID-r5g1-zwbg-xubc" }, { "vulnerability": "VCID-ysmy-fhmq-ffdu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.App.Runtime.linux-musl-arm@6.0.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/54536?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.App.Runtime.win-arm@3.1.28", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dp82-cuxf-9yhq" }, { "vulnerability": "VCID-mf9a-cc9y-2yd3" }, { "vulnerability": "VCID-r5g1-zwbg-xubc" }, { "vulnerability": "VCID-ysmy-fhmq-ffdu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.App.Runtime.win-arm@3.1.28" }, { "url": "http://public2.vulnerablecode.io/api/packages/54537?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.App.Runtime.win-arm@6.0.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-dp82-cuxf-9yhq" }, { "vulnerability": "VCID-mf9a-cc9y-2yd3" }, { "vulnerability": "VCID-r5g1-zwbg-xubc" }, { "vulnerability": "VCID-ysmy-fhmq-ffdu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.App.Runtime.win-arm@6.0.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/54502?format=api", "purl": "pkg:nuget/System.Security.Cryptography.Xml@4.7.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/System.Security.Cryptography.Xml@4.7.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/54503?format=api", "purl": "pkg:nuget/System.Security.Cryptography.Xml@6.0.1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/System.Security.Cryptography.Xml@6.0.1" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/62367?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.App.Runtime.linux-arm@3.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9zu6-5d4v-f3ht" }, { "vulnerability": "VCID-fm28-azef-buh6" }, { "vulnerability": "VCID-j761-wgke-97d8" }, { "vulnerability": "VCID-n3cs-wjun-vfhe" }, { "vulnerability": "VCID-naj1-hh3a-q7ej" }, { "vulnerability": "VCID-nx74-pj4e-4fde" }, { "vulnerability": "VCID-puaf-7ge8-nbhg" }, { "vulnerability": "VCID-r5g1-zwbg-xubc" }, { "vulnerability": "VCID-rz8f-jn6b-a7fw" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.App.Runtime.linux-arm@3.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/62369?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.App.Runtime.linux-arm@6.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5n75-cxug-2uaj" }, { "vulnerability": "VCID-7j9q-dfj7-jbgt" }, { "vulnerability": "VCID-ew2m-qrrh-dkbf" }, { "vulnerability": "VCID-m6bh-57h2-73a3" }, { "vulnerability": "VCID-naj1-hh3a-q7ej" }, { "vulnerability": "VCID-rz8f-jn6b-a7fw" }, { "vulnerability": "VCID-ujyg-uwtg-vqbt" }, { "vulnerability": "VCID-uxus-gdkx-xudj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.App.Runtime.linux-arm@6.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/62349?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.App.Runtime.linux-arm64@3.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9zu6-5d4v-f3ht" }, { "vulnerability": "VCID-fm28-azef-buh6" }, { "vulnerability": "VCID-j761-wgke-97d8" }, { "vulnerability": "VCID-n3cs-wjun-vfhe" }, { "vulnerability": "VCID-naj1-hh3a-q7ej" }, { "vulnerability": "VCID-nx74-pj4e-4fde" }, { "vulnerability": "VCID-puaf-7ge8-nbhg" }, { "vulnerability": "VCID-r5g1-zwbg-xubc" }, { "vulnerability": "VCID-rz8f-jn6b-a7fw" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.App.Runtime.linux-arm64@3.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/62351?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.App.Runtime.linux-arm64@6.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5n75-cxug-2uaj" }, { "vulnerability": "VCID-7j9q-dfj7-jbgt" }, { "vulnerability": "VCID-ew2m-qrrh-dkbf" }, { "vulnerability": "VCID-m6bh-57h2-73a3" }, { "vulnerability": "VCID-naj1-hh3a-q7ej" }, { "vulnerability": "VCID-rz8f-jn6b-a7fw" }, { "vulnerability": "VCID-ujyg-uwtg-vqbt" }, { "vulnerability": "VCID-uxus-gdkx-xudj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.App.Runtime.linux-arm64@6.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/62371?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.App.Runtime.linux-musl-arm@3.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-naj1-hh3a-q7ej" }, { "vulnerability": "VCID-rz8f-jn6b-a7fw" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.App.Runtime.linux-musl-arm@3.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/62373?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.App.Runtime.linux-musl-arm@6.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5n75-cxug-2uaj" }, { "vulnerability": "VCID-7j9q-dfj7-jbgt" }, { "vulnerability": "VCID-dp82-cuxf-9yhq" }, { "vulnerability": "VCID-ew2m-qrrh-dkbf" }, { "vulnerability": "VCID-m6bh-57h2-73a3" }, { "vulnerability": "VCID-naj1-hh3a-q7ej" }, { "vulnerability": "VCID-r5g1-zwbg-xubc" }, { "vulnerability": "VCID-rz8f-jn6b-a7fw" }, { "vulnerability": "VCID-ujyg-uwtg-vqbt" }, { "vulnerability": "VCID-uxus-gdkx-xudj" }, { "vulnerability": "VCID-ysmy-fhmq-ffdu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.App.Runtime.linux-musl-arm@6.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/62359?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.App.Runtime.linux-musl-arm64@3.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9zu6-5d4v-f3ht" }, { "vulnerability": "VCID-j761-wgke-97d8" }, { "vulnerability": "VCID-n3cs-wjun-vfhe" }, { "vulnerability": "VCID-naj1-hh3a-q7ej" }, { "vulnerability": "VCID-nx74-pj4e-4fde" }, { "vulnerability": "VCID-puaf-7ge8-nbhg" }, { "vulnerability": "VCID-r5g1-zwbg-xubc" }, { "vulnerability": "VCID-rz8f-jn6b-a7fw" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.App.Runtime.linux-musl-arm64@3.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/62361?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.App.Runtime.linux-musl-arm64@6.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5n75-cxug-2uaj" }, { "vulnerability": "VCID-7j9q-dfj7-jbgt" }, { "vulnerability": "VCID-ew2m-qrrh-dkbf" }, { "vulnerability": "VCID-m6bh-57h2-73a3" }, { "vulnerability": "VCID-naj1-hh3a-q7ej" }, { "vulnerability": "VCID-rz8f-jn6b-a7fw" }, { "vulnerability": "VCID-ujyg-uwtg-vqbt" }, { "vulnerability": "VCID-uxus-gdkx-xudj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.App.Runtime.linux-musl-arm64@6.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/62382?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.App.Runtime.linux-musl-x64@3.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9zu6-5d4v-f3ht" }, { "vulnerability": "VCID-fm28-azef-buh6" }, { "vulnerability": "VCID-j761-wgke-97d8" }, { "vulnerability": "VCID-n3cs-wjun-vfhe" }, { "vulnerability": "VCID-naj1-hh3a-q7ej" }, { "vulnerability": "VCID-nx74-pj4e-4fde" }, { "vulnerability": "VCID-puaf-7ge8-nbhg" }, { "vulnerability": "VCID-r5g1-zwbg-xubc" }, { "vulnerability": "VCID-rz8f-jn6b-a7fw" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.App.Runtime.linux-musl-x64@3.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/62384?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.App.Runtime.linux-musl-x64@6.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5n75-cxug-2uaj" }, { "vulnerability": "VCID-7j9q-dfj7-jbgt" }, { "vulnerability": "VCID-ew2m-qrrh-dkbf" }, { "vulnerability": "VCID-m6bh-57h2-73a3" }, { "vulnerability": "VCID-naj1-hh3a-q7ej" }, { "vulnerability": "VCID-rz8f-jn6b-a7fw" }, { "vulnerability": "VCID-ujyg-uwtg-vqbt" }, { "vulnerability": "VCID-uxus-gdkx-xudj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.App.Runtime.linux-musl-x64@6.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/62363?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.App.Runtime.linux-x64@3.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9zu6-5d4v-f3ht" }, { "vulnerability": "VCID-fm28-azef-buh6" }, { "vulnerability": "VCID-j761-wgke-97d8" }, { "vulnerability": "VCID-n3cs-wjun-vfhe" }, { "vulnerability": "VCID-naj1-hh3a-q7ej" }, { "vulnerability": "VCID-nx74-pj4e-4fde" }, { "vulnerability": "VCID-puaf-7ge8-nbhg" }, { "vulnerability": "VCID-r5g1-zwbg-xubc" }, { "vulnerability": "VCID-rz8f-jn6b-a7fw" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.App.Runtime.linux-x64@3.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/62365?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.App.Runtime.linux-x64@6.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5n75-cxug-2uaj" }, { "vulnerability": "VCID-7j9q-dfj7-jbgt" }, { "vulnerability": "VCID-ew2m-qrrh-dkbf" }, { "vulnerability": "VCID-m6bh-57h2-73a3" }, { "vulnerability": "VCID-naj1-hh3a-q7ej" }, { "vulnerability": "VCID-rz8f-jn6b-a7fw" }, { "vulnerability": "VCID-ujyg-uwtg-vqbt" }, { "vulnerability": "VCID-uxus-gdkx-xudj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.App.Runtime.linux-x64@6.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/62387?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.App.Runtime.osx-x64@3.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9zu6-5d4v-f3ht" }, { "vulnerability": "VCID-fm28-azef-buh6" }, { "vulnerability": "VCID-j761-wgke-97d8" }, { "vulnerability": "VCID-n3cs-wjun-vfhe" }, { "vulnerability": "VCID-naj1-hh3a-q7ej" }, { "vulnerability": "VCID-nx74-pj4e-4fde" }, { "vulnerability": "VCID-puaf-7ge8-nbhg" }, { "vulnerability": "VCID-r5g1-zwbg-xubc" }, { "vulnerability": "VCID-rz8f-jn6b-a7fw" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.App.Runtime.osx-x64@3.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/62389?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.App.Runtime.osx-x64@6.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5n75-cxug-2uaj" }, { "vulnerability": "VCID-7j9q-dfj7-jbgt" }, { "vulnerability": "VCID-ew2m-qrrh-dkbf" }, { "vulnerability": "VCID-m6bh-57h2-73a3" }, { "vulnerability": "VCID-naj1-hh3a-q7ej" }, { "vulnerability": "VCID-rz8f-jn6b-a7fw" }, { "vulnerability": "VCID-ujyg-uwtg-vqbt" }, { "vulnerability": "VCID-uxus-gdkx-xudj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.App.Runtime.osx-x64@6.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/62392?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.App.Runtime.win-arm@3.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-7j9q-dfj7-jbgt" }, { "vulnerability": "VCID-9zu6-5d4v-f3ht" }, { "vulnerability": "VCID-dp82-cuxf-9yhq" }, { "vulnerability": "VCID-ew2m-qrrh-dkbf" }, { "vulnerability": "VCID-fm28-azef-buh6" }, { "vulnerability": "VCID-j761-wgke-97d8" }, { "vulnerability": "VCID-m6bh-57h2-73a3" }, { "vulnerability": "VCID-mf9a-cc9y-2yd3" }, { "vulnerability": "VCID-n3cs-wjun-vfhe" }, { "vulnerability": "VCID-naj1-hh3a-q7ej" }, { "vulnerability": "VCID-nx74-pj4e-4fde" }, { "vulnerability": "VCID-puaf-7ge8-nbhg" }, { "vulnerability": "VCID-r5g1-zwbg-xubc" }, { "vulnerability": "VCID-rz8f-jn6b-a7fw" }, { "vulnerability": "VCID-ujyg-uwtg-vqbt" }, { "vulnerability": "VCID-ysmy-fhmq-ffdu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.App.Runtime.win-arm@3.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/62394?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.App.Runtime.win-arm@6.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5n75-cxug-2uaj" }, { "vulnerability": "VCID-7j9q-dfj7-jbgt" }, { "vulnerability": "VCID-dp82-cuxf-9yhq" }, { "vulnerability": "VCID-ew2m-qrrh-dkbf" }, { "vulnerability": "VCID-m6bh-57h2-73a3" }, { "vulnerability": "VCID-mf9a-cc9y-2yd3" }, { "vulnerability": "VCID-naj1-hh3a-q7ej" }, { "vulnerability": "VCID-r5g1-zwbg-xubc" }, { "vulnerability": "VCID-rz8f-jn6b-a7fw" }, { "vulnerability": "VCID-ujyg-uwtg-vqbt" }, { "vulnerability": "VCID-uxus-gdkx-xudj" }, { "vulnerability": "VCID-ysmy-fhmq-ffdu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.App.Runtime.win-arm@6.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/62397?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.App.Runtime.win-arm64@3.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-j761-wgke-97d8" }, { "vulnerability": "VCID-naj1-hh3a-q7ej" }, { "vulnerability": "VCID-nx74-pj4e-4fde" }, { "vulnerability": "VCID-r5g1-zwbg-xubc" }, { "vulnerability": "VCID-rz8f-jn6b-a7fw" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.App.Runtime.win-arm64@3.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/62399?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.App.Runtime.win-arm64@6.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5n75-cxug-2uaj" }, { "vulnerability": "VCID-7j9q-dfj7-jbgt" }, { "vulnerability": "VCID-eeub-ree5-dyez" }, { "vulnerability": "VCID-ew2m-qrrh-dkbf" }, { "vulnerability": "VCID-m6bh-57h2-73a3" }, { "vulnerability": "VCID-naj1-hh3a-q7ej" }, { "vulnerability": "VCID-rz8f-jn6b-a7fw" }, { "vulnerability": "VCID-ujyg-uwtg-vqbt" }, { "vulnerability": "VCID-uxus-gdkx-xudj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.App.Runtime.win-arm64@6.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/62354?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.App.Runtime.win-x64@3.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9zu6-5d4v-f3ht" }, { "vulnerability": "VCID-fm28-azef-buh6" }, { "vulnerability": "VCID-j761-wgke-97d8" }, { "vulnerability": "VCID-n3cs-wjun-vfhe" }, { "vulnerability": "VCID-naj1-hh3a-q7ej" }, { "vulnerability": "VCID-nx74-pj4e-4fde" }, { "vulnerability": "VCID-puaf-7ge8-nbhg" }, { "vulnerability": "VCID-r5g1-zwbg-xubc" }, { "vulnerability": "VCID-rz8f-jn6b-a7fw" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.App.Runtime.win-x64@3.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/62356?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.App.Runtime.win-x64@6.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5n75-cxug-2uaj" }, { "vulnerability": "VCID-7j9q-dfj7-jbgt" }, { "vulnerability": "VCID-eeub-ree5-dyez" }, { "vulnerability": "VCID-ew2m-qrrh-dkbf" }, { "vulnerability": "VCID-m6bh-57h2-73a3" }, { "vulnerability": "VCID-naj1-hh3a-q7ej" }, { "vulnerability": "VCID-rz8f-jn6b-a7fw" }, { "vulnerability": "VCID-ujyg-uwtg-vqbt" }, { "vulnerability": "VCID-uxus-gdkx-xudj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.App.Runtime.win-x64@6.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/62377?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.App.Runtime.win-x86@3.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-9zu6-5d4v-f3ht" }, { "vulnerability": "VCID-fm28-azef-buh6" }, { "vulnerability": "VCID-j761-wgke-97d8" }, { "vulnerability": "VCID-n3cs-wjun-vfhe" }, { "vulnerability": "VCID-naj1-hh3a-q7ej" }, { "vulnerability": "VCID-nx74-pj4e-4fde" }, { "vulnerability": "VCID-puaf-7ge8-nbhg" }, { "vulnerability": "VCID-r5g1-zwbg-xubc" }, { "vulnerability": "VCID-rz8f-jn6b-a7fw" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.App.Runtime.win-x86@3.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/62379?format=api", "purl": "pkg:nuget/Microsoft.AspNetCore.App.Runtime.win-x86@6.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5n75-cxug-2uaj" }, { "vulnerability": "VCID-7j9q-dfj7-jbgt" }, { "vulnerability": "VCID-eeub-ree5-dyez" }, { "vulnerability": "VCID-ew2m-qrrh-dkbf" }, { "vulnerability": "VCID-m6bh-57h2-73a3" }, { "vulnerability": "VCID-naj1-hh3a-q7ej" }, { "vulnerability": "VCID-rz8f-jn6b-a7fw" }, { "vulnerability": "VCID-ujyg-uwtg-vqbt" }, { "vulnerability": "VCID-uxus-gdkx-xudj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.App.Runtime.win-x86@6.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/62347?format=api", "purl": "pkg:nuget/System.Security.Cryptography.Xml@5.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-naj1-hh3a-q7ej" }, { "vulnerability": "VCID-rz8f-jn6b-a7fw" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:nuget/System.Security.Cryptography.Xml@5.0.0" } ], "references": [ { "reference_url": "https://github.com/dotnet/announcements/issues/232", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/dotnet/announcements/issues/232" }, { "reference_url": "https://github.com/dotnet/aspnetcore/issues/43166", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/dotnet/aspnetcore/issues/43166" }, { "reference_url": "https://github.com/dotnet/aspnetcore/security/advisories/GHSA-vh55-786g-wjwj", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/dotnet/aspnetcore/security/advisories/GHSA-vh55-786g-wjwj" }, { "reference_url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34716", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-34716" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-34716", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-34716" }, { "reference_url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-34716", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N" }, { "value": "MODERATE", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-34716" }, { "reference_url": "https://github.com/advisories/GHSA-2m65-m22p-9wjw", "reference_id": "GHSA-2m65-m22p-9wjw", "reference_type": "", "scores": [ { "value": "MODERATE", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-2m65-m22p-9wjw" } ], "weaknesses": [], "exploits": [], "severity_range_score": "4.0 - 6.9", "exploitability": "0.5", "weighted_severity": "6.2", "risk_score": 3.1, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-naj1-hh3a-q7ej" }