Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (264 CVEs found)

Export CSV
CVE Vendors Products Updated CVSS v3.1
CVE-2026-45591 2 Microsoft, Redhat 5 .net, Asp.net Core, Visual Studio 2026 and 2 more 2026-06-10 7.5 High
Uncontrolled resource consumption in ASP.NET Core allows an unauthorized attacker to deny service over a network.
CVE-2026-45491 2 Microsoft, Redhat 3 .net, Enterprise Linux, Hummingbird 2026-06-10 6.2 Medium
Improper link resolution before file access ('link following') in .NET allows an unauthorized attacker to perform tampering locally.
CVE-2026-45490 1 Microsoft 1 .net 2026-06-10 7.8 High
Improper authorization in .NET allows an authorized attacker to elevate privileges locally.
CVE-2024-43485 4 Apple, Linux, Microsoft and 1 more 12 Macos, Linux Kernel, .net and 9 more 2026-06-09 7.5 High
.NET and Visual Studio Denial of Service Vulnerability
CVE-2024-43484 4 Apple, Linux, Microsoft and 1 more 28 Macos, Linux Kernel, .net and 25 more 2026-06-09 7.5 High
.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability
CVE-2024-43483 4 Apple, Linux, Microsoft and 1 more 28 Macos, Linux Kernel, .net and 25 more 2026-06-09 7.5 High
.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability
CVE-2024-38229 4 Apple, Linux, Microsoft and 1 more 7 Macos, Linux Kernel, .net and 4 more 2026-06-09 8.1 High
.NET and Visual Studio Remote Code Execution Vulnerability
CVE-2026-35433 1 Microsoft 1 .net 2026-06-09 7.3 High
Heap-based buffer overflow in .NET allows an unauthorized attacker to elevate privileges locally.
CVE-2020-8927 7 Canonical, Debian, Fedoraproject and 4 more 12 Ubuntu Linux, Debian Linux, Fedora and 9 more 2026-05-29 5.3 Medium
A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a "one-shot" decompression request to a script can trigger a crash, which happens when copying over chunks of data larger than 2 GiB. It is recommended to update your Brotli library to 1.0.8 or later. If one cannot update, we recommend to use the "streaming" API as opposed to the "one-shot" API, and impose chunk size limits.
CVE-2021-26701 3 Fedoraproject, Microsoft, Redhat 8 Fedora, .net, .net Core and 5 more 2026-05-28 8.1 High
.NET Core Remote Code Execution Vulnerability
CVE-2023-28260 1 Microsoft 4 .net, Powershell, Visual Studio and 1 more 2026-05-28 7.8 High
.NET DLL Hijacking Remote Code Execution Vulnerability
CVE-2022-38013 3 Fedoraproject, Microsoft, Redhat 7 Fedora, .net, .net Core and 4 more 2026-05-27 7.5 High
.NET Core and Visual Studio Denial of Service Vulnerability
CVE-2022-29145 3 Fedoraproject, Microsoft, Redhat 7 Fedora, .net, .net Core and 4 more 2026-05-27 7.5 High
.NET and Visual Studio Denial of Service Vulnerability
CVE-2022-29117 3 Fedoraproject, Microsoft, Redhat 7 Fedora, .net, .net Core and 4 more 2026-05-27 7.5 High
.NET and Visual Studio Denial of Service Vulnerability
CVE-2022-24512 3 Fedoraproject, Microsoft, Redhat 9 Fedora, .net, .net Core and 6 more 2026-05-27 6.3 Medium
.NET and Visual Studio Remote Code Execution Vulnerability
CVE-2022-41089 1 Microsoft 16 .net, .net Core, .net Framework and 13 more 2026-05-27 7.8 High
.NET Framework Remote Code Execution Vulnerability
CVE-2022-24464 3 Fedoraproject, Microsoft, Redhat 7 Fedora, .net, .net Core and 4 more 2026-05-27 7.5 High
.NET and Visual Studio Denial of Service Vulnerability
CVE-2022-23267 3 Fedoraproject, Microsoft, Redhat 9 Fedora, .net, .net Core and 6 more 2026-05-27 7.5 High
.NET and Visual Studio Denial of Service Vulnerability
CVE-2026-42899 3 Apple, Linux, Microsoft 4 Macos, Linux Kernel, .net and 1 more 2026-05-26 7.5 High
Loop with unreachable exit condition ('infinite loop') in ASP.NET Core allows an unauthorized attacker to deny service over a network.
CVE-2026-32175 1 Microsoft 6 .net, Microsoft Visual Studio 2022, Visual Studio 2017 and 3 more 2026-05-26 4.3 Medium
A tampering vulnerability exists when .NET Core improperly handles specially crafted files. An attacker who successfully exploited this vulnerability could write arbitrary files and directories to certain locations on a vulnerable system. However, an attacker would have limited control over the destination of the files and directories. To exploit the vulnerability, an attacker must send a specially crafted file to a vulnerable system. The security update fixes the vulnerability by ensuring .NET Core properly handles files.