Search for packages
Package details: pkg:nuget/Microsoft.AspNetCore.Identity@2.3.0
purl pkg:nuget/Microsoft.AspNetCore.Identity@2.3.0
Next non-vulnerable version 2.3.1
Latest non-vulnerable version 2.3.1
Risk 4.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-m6qq-pv1j-hqb3
Aliases:
CVE-2025-24070
GHSA-2865-hh9g-w894
dotnet: Privilege Escalation Vulnerability in .NET SignInManager.RefreshSignInAsync Method
2.3.1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-13T20:19:01.071821+00:00 GithubOSV Importer Affected by VCID-m6qq-pv1j-hqb3 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/03/GHSA-2865-hh9g-w894/GHSA-2865-hh9g-w894.json 36.1.0
2025-04-04T11:31:40.182960+00:00 GithubOSV Importer Affected by VCID-m6qq-pv1j-hqb3 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/03/GHSA-2865-hh9g-w894/GHSA-2865-hh9g-w894.json 36.0.0
2025-03-28T20:12:57.268343+00:00 GHSA Importer Affected by VCID-m6qq-pv1j-hqb3 https://github.com/advisories/GHSA-2865-hh9g-w894 36.0.0