CVE-2020-1147 – microsoft.netcore.app.runtime.linux-musl-x64

Package

Manager: nuget
Name: microsoft.netcore.app.runtime.linux-musl-x64
Vulnerable Version: >=3.1.0 <3.1.6

Severity

Level: High

CVSS v3.1: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

EPSS: 0.92798 pctl0.99752

Details

.NET Framework, SharePoint Server, and Visual Studio Remote Code Execution Vulnerability A remote code execution vulnerability exists in .NET Framework, Microsoft SharePoint, and Visual Studio when the software fails to check the source markup of XML file input, aka '.NET Framework, SharePoint Server, and Visual Studio Remote Code Execution Vulnerability'.

Metadata

Created: 2022-05-24T17:22:57Z
Modified: 2022-10-21T20:58:50Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-g5vf-38cp-4px9/GHSA-g5vf-38cp-4px9.json
CWE IDs: []
Alternative ID: GHSA-g5vf-38cp-4px9
Finding: F083
Auto approve: 1