Home › Packages › AlmaLinux:8 › dotnet-apphost-pack-6.0dotnet-apphost-pack-6.0 (AlmaLinux:8) — known CVEs & security advisories Known CVE vulnerabilities and GitHub Security Advisories affecting the AlmaLinux:8 package dotnet-apphost-pack-6.0, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (29) CVE-2024-0057 — CVSS 9.1 (critical) : NET, .NET Framework, and Visual Studio Security Feature Bypass VulnerabilityCVE-2024-0056 — CVSS 8.7 (high) : Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass VulnerabilityCVE-2023-33170 — CVSS 8.1 (high) : ASP.NET and Visual Studio Security Feature Bypass VulnerabilityCVE-2022-41032 — CVSS 7.8 (high) : NuGet Client Elevation of Privilege VulnerabilityCVE-2023-35390 — CVSS 7.8 (high) : .NET and Visual Studio Remote Code Execution VulnerabilityCVE-2023-36049 — CVSS 7.6 (high) : .NET, .NET Framework, and Visual Studio Elevation of Privilege VulnerabilityCVE-2023-24936 — CVSS 7.5 (high) : .NET, .NET Framework, and Visual Studio Elevation of Privilege VulnerabilityCVE-2023-29331 — CVSS 7.5 (high) : .NET, .NET Framework, and Visual Studio Denial of Service VulnerabilityCVE-2024-43485 — CVSS 7.5 (high) : .NET and Visual Studio Denial of Service VulnerabilityCVE-2022-24464 — CVSS 7.5 (high) : .NET and Visual Studio Denial of Service VulnerabilityCVE-2022-29117 — CVSS 7.5 (high) : .NET and Visual Studio Denial of Service VulnerabilityCVE-2022-29145 — CVSS 7.5 (high) : .NET and Visual Studio Denial of Service VulnerabilityCVE-2022-38013 — CVSS 7.5 (high) : .NET Core and Visual Studio Denial of Service VulnerabilityCVE-2023-21538 — CVSS 7.5 (high) : .NET Denial of Service VulnerabilityCVE-2023-44487 — CVSS 7.5 (high) — actively exploited : The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly…CVE-2024-21386 — CVSS 7.5 (high) : .NET Denial of Service VulnerabilityCVE-2024-21404 — CVSS 7.5 (high) : .NET Denial of Service VulnerabilityCVE-2024-38095 — CVSS 7.5 (high) : .NET and Visual Studio Denial of Service VulnerabilityCVE-2024-43483 — CVSS 7.5 (high) : .NET, .NET Framework, and Visual Studio Denial of Service VulnerabilityCVE-2024-43484 — CVSS 7.5 (high) : .NET, .NET Framework, and Visual Studio Denial of Service VulnerabilityCVE-2022-23267 — CVSS 7.5 (high) : .NET and Visual Studio Denial of Service VulnerabilityCVE-2023-38180 — CVSS 7.5 (high) — actively exploited : .NET and Visual Studio Denial of Service VulnerabilityCVE-2023-33128 — CVSS 7.3 (high) : .NET and Visual Studio Remote Code Execution VulnerabilityCVE-2023-29337 — CVSS 7.1 (high) : NuGet Client Remote Code Execution VulnerabilityCVE-2024-21319 — CVSS 6.8 (medium) : Microsoft Identity Denial of service vulnerabilityCVE-2023-36799 — CVSS 6.5 (medium) : .NET Core and Visual Studio Denial of Service VulnerabilityCVE-2022-24512 — CVSS 6.3 (medium) : .NET and Visual Studio Remote Code Execution VulnerabilityCVE-2023-36558 — CVSS 6.2 (medium) : ASP.NET Core Security Feature Bypass VulnerabilityCVE-2022-34716 — CVSS 5.9 (medium) : .NET Spoofing Vulnerability