0.001 Low
EPSS
Percentile
46.0%
.NET is vulnerable to Remote Code Execution (RCE). The vulnerability exists because the library does not properly validate the debugging symbols, allowing an attacker to inject and execute malicious code while reading a malicious symbols file.
github.com/advisories/GHSA-824j-wqm8-89mj
github.com/dotnet/runtime/commit/7b189c806de5e233273ab9ea2860446292c02046
github.com/dotnet/runtime/commit/cdc7e17f43e9094f18e92e705f5e5837da6ef3f3
github.com/dotnet/runtime/issues/82112
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21808