VulnerableCode Package Details - pkg:nuget/Microsoft.AspNetCore.App.Runtime.win-arm64@6.0.36

Search for packages

Package details: pkg:nuget/Microsoft.AspNetCore.App.Runtime.win-arm64@6.0.36

purl	pkg:nuget/Microsoft.AspNetCore.App.Runtime.win-arm64@6.0.36

Next non-vulnerable version	7.0.19
Latest non-vulnerable version	9.0.3
Risk	4.0

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-m6qq-pv1j-hqb3 Aliases: CVE-2025-24070 GHSA-2865-hh9g-w894	dotnet: Privilege Escalation Vulnerability in .NET SignInManager.RefreshSignInAsync Method	8.0.14 Affected by 0 other vulnerabilities. 9.0.3 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-m6qq-pv1j-hqb3
Aliases:
CVE-2025-24070
GHSA-2865-hh9g-w894

dotnet: Privilege Escalation Vulnerability in .NET SignInManager.RefreshSignInAsync Method

8.0.14
Affected by 0 other vulnerabilities.

9.0.3
Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-05-23T01:43:07.159275+00:00	GHSA Importer	Affected by	VCID-m6qq-pv1j-hqb3	https://github.com/advisories/GHSA-2865-hh9g-w894	36.0.0