Language:
https://dotnet.microsoft.com/download/dotnet/6.0
https://dotnet.microsoft.com/en-us/download/dotnet/7.0
https://dotnet.microsoft.com/en-us/download/dotnet/8.0
https://github.com/dotnet/announcements/issues/288
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36558
https://support.microsoft.com/help/5032883
https://support.microsoft.com/help/5032884
http://www.nessus.org/u?aac42578
Severity: Medium
ID: 185884
File Name: smb_nt_ms23_nov_aspdotnet_core_cve-2023-36558.nasl
Version: 1.6
Type: local
Agent: windows
Family: Windows : Microsoft Bulletins
Published: 11/16/2023
Updated: 2/16/2024
Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Nessus
Risk Factor: Medium
Score: 4.4
Risk Factor: Medium
Base Score: 4.6
Temporal Score: 3.4
Vector: CVSS2#AV:L/AC:L/Au:S/C:C/I:N/A:N
CVSS Score Source: CVE-2023-36558
Risk Factor: Medium
Base Score: 5.5
Temporal Score: 4.8
Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
CPE: cpe:/a:microsoft:asp.net_core
Required KB Items: installed_sw/ASP .NET Core Windows
Exploit Ease: No known exploits are available
Patch Publication Date: 11/14/2023
Vulnerability Publication Date: 11/14/2023
CVE: CVE-2023-36558
IAVA: 2023-A-0617-S