aspnetcore-runtime-6.0 vulnerabilities

Known vulnerabilities in the aspnetcore-runtime-6.0 package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable Version
M CVE-2024-38095	<0:6.0.32-1.el8_10
M Resource Exhaustion	*
H Resource Exhaustion	<0:6.0.27-1.el8_9
H CVE-2024-21386	<0:6.0.27-1.el8_9
H Improper Certificate Validation	<0:6.0.26-1.el8_9
H Unprotected Alternate Channel	<0:6.0.26-1.el8_9
H Resource Exhaustion	<0:6.0.26-1.el8_9
M Arbitrary Code Injection	<0:6.0.25-1.el8_9
M CVE-2023-36558	<0:6.0.25-1.el8_9
H Reversible One-Way Hash	<0:6.0.26-1.el8_9
H Resource Exhaustion	<0:6.0.23-1.el8_8
M Resource Exhaustion	<0:6.0.24-1.el8_8
H Resource Exhaustion	<0:6.0.21-1.el8_8
H CVE-2023-35390	<0:6.0.21-1.el8_8
H Race Condition	<0:6.0.20-1.el8_8
H CVE-2023-33128	<0:6.0.18-1.el8_8
H CVE-2023-29337	<0:6.0.18-1.el8_8
H CVE-2023-29331	<0:6.0.18-1.el8_8
H CVE-2023-24936	<0:6.0.18-1.el8_8
M Inefficient Regular Expression Complexity	*
M Stack-based Buffer Overflow	<0:6.0.13-1.el8_7
M Information Exposure Through Caching	<0:6.0.10-1.el8_6
M Resource Exhaustion	<0:6.0.9-1.el8_6
M XML External Entity (XXE) Injection	<0:6.0.8-1.el8_6
M Improper Cross-boundary Removal of Sensitive Data	<0:6.0.6-1.el8_6
M Exposure of Private Information ('Privacy Violation')	<0:6.0.7-1.el8_6
H Incorrect Behavior Order: Early Validation	<0:6.0.5-1.el8_6
H Reliance on Cookies without Validation and Integrity Checking	<0:6.0.5-1.el8_6
H Allocation of Resources Without Limits or Throttling	<0:6.0.5-1.el8_6
H Buffer Overflow	<0:6.0.3-4.el8_5
H Improper Use of Validation Framework	<0:6.0.3-4.el8_5
H Allocation of Resources Without Limits or Throttling	<0:6.0.2-1.el8_5

Vulnerability

Vulnerable Version

<0:6.0.32-1.el8_10