dotnet-hostfxr-6.0 vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the dotnet-hostfxr-6.0 package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
M CVE-2024-38095	<0:6.0.32-1.el9_4
M NULL Pointer Dereference	*
H Resource Exhaustion	<0:6.0.27-1.el9_3
H CVE-2024-21386	<0:6.0.27-1.el9_3
H Resource Exhaustion	<0:6.0.26-1.el9_3
H Unprotected Alternate Channel	<0:6.0.26-1.el9_3
H Improper Certificate Validation	<0:6.0.26-1.el9_3
M CVE-2023-36558	<0:6.0.25-1.el9_3
M Arbitrary Code Injection	<0:6.0.25-1.el9_3
H Reversible One-Way Hash	<0:6.0.26-1.el9_3
H Resource Exhaustion	<0:6.0.23-1.el9_2
M Resource Exhaustion	<0:6.0.24-1.el9_2
H Resource Exhaustion	<0:6.0.21-1.el9_2
H CVE-2023-35390	<0:6.0.21-1.el9_2
H Race Condition	<0:6.0.20-1.el9_2
H CVE-2023-33128	<0:6.0.18-1.el9_2
H CVE-2023-29337	<0:6.0.18-1.el9_2
H CVE-2023-29331	<0:6.0.18-1.el9_2
H CVE-2023-24936	<0:6.0.18-1.el9_2
M Inefficient Regular Expression Complexity	*
M Stack-based Buffer Overflow	<0:6.0.13-1.el9_1
M Information Exposure Through Caching	<0:6.0.10-1.el9_0
M Resource Exhaustion	<0:6.0.9-1.el9_0
M XML External Entity (XXE) Injection	<0:6.0.8-1.el9_0
M Open Redirect	*
M Improper Cross-boundary Removal of Sensitive Data	<0:6.0.6-1.el9_0
M Exposure of Private Information ('Privacy Violation')	<0:6.0.7-1.el9_0
H Incorrect Behavior Order: Early Validation	<0:6.0.5-1.el9_0
H Reliance on Cookies without Validation and Integrity Checking	<0:6.0.5-1.el9_0
H Allocation of Resources Without Limits or Throttling	<0:6.0.5-1.el9_0