Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
asp.net vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-36899
ASP.NET Elevation of Privilege Vulnerability
Microsoft .net Framework 4.8
Microsoft .net Framework 4.6.2
Microsoft .net Framework 4.7
Microsoft .net Framework 4.7.1
Microsoft .net Framework 4.7.2
Microsoft .net Framework 3.5
Microsoft .net Framework 4.8.1
Microsoft .net Framework 2.0
1 Github repository
NA
CVE-2023-36038
ASP.NET Core Denial of Service Vulnerability
Microsoft Visual Studio 2022
Microsoft Asp.net Core 8.0.0
1 Article
5
CVSSv2
CVE-2021-35235
The ASP.NET debug feature is enabled by default in Kiwi Syslog Server 9.7.2 and previous versions. ASP.NET allows remote debugging of web applications, if configured to do so. Debug mode causes ASP.NET to compile applications with extra information. The information enables a debu...
Solarwinds Kiwi Syslog Server
9.3
CVSSv2
CVE-2011-3417
The Forms Authentication feature in the ASP.NET subsystem in Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.5 SP1, 3.5.1, and 4.0, when sliding expiry is enabled, does not properly handle cached content, which allows remote malicious users to obtain access to arbitrary user account...
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Xp Sp3
Microsoft Windows 7 -
Microsoft Windows Server 2008 -
Microsoft Windows Xp
Microsoft Windows Server 2003
Microsoft Windows Vista -
Microsoft Windows Vista
2.6
CVSSv2
CVE-2009-1536
ASP.NET in Microsoft .NET Framework 2.0 SP1 and SP2 and 3.5 Gold and SP1, when ASP 2.0 is used in integrated mode on IIS 7.0, does not properly manage request scheduling, which allows remote malicious users to cause a denial of service (daemon outage) via a series of crafted HTTP...
Microsoft .net Framework 3.5
Microsoft Windows Vista -
Microsoft .net Framework 2.0
Microsoft Windows Server 2008 -
Microsoft Windows Vista
2.1
CVSSv2
CVE-2020-1476
An elevation of privilege vulnerability exists when ASP.NET or .NET web applications running on IIS improperly allow access to cached files. An attacker who successfully exploited this vulnerability could gain access to restricted files. To exploit this vulnerability, an attacker...
Microsoft .net Framework 2.0
Microsoft .net Framework 3.5
Microsoft .net Framework 4.6.2
Microsoft .net Framework 4.7
Microsoft .net Framework 4.7.1
Microsoft .net Framework 4.7.2
Microsoft .net Framework 4.6
Microsoft .net Framework 4.6.1
Microsoft .net Framework 4.8
Microsoft .net Framework 3.5.1
Microsoft .net Framework 4.5.2
NA
CVE-2023-33170
ASP.NET and Visual Studio Security Feature Bypass Vulnerability
Microsoft Visual Studio 2022
Microsoft .net
Fedoraproject Fedora 37
Fedoraproject Fedora 38
7.5
CVSSv2
CVE-2021-44029
An issue exists in Quest KACE Desktop Authority prior to 11.2. This vulnerability allows malicious users to execute remote code through a deserialization exploitation in the RadAsyncUpload function of ASP.NET AJAX. An attacker can leverage this vulnerability when the encryption k...
Quest Kace Desktop Authority
3.5
CVSSv2
CVE-2019-19092
ABB eSOMS versions 4.0 to 6.0.3 use ASP.NET Viewstate without Message Authentication Code (MAC). Alterations to Viewstate might thus not be noticed.
Hitachienergy Esoms
NA
CVE-2023-38178
.NET Core and Visual Studio Denial of Service Vulnerability
Microsoft .net 6.0.0
Microsoft Visual Studio 2022
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
spoof
CVE-2024-34928
CVE-2024-5291
deserialization
CVE-2024-4471
CVE-2024-4956
CVE-2024-32002
CVE-2024-5227
unspecified
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »