Fluid Attacks Database

Description

An elevation of privilege vulnerability was found in .NET. This flaw allows an attacker to write a specially crafted file in the security context of the local system.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
rpm rhel8	dotnet9.0	<0:9.0.102-1.el8_10	0:9.0.102-1.el8_10
rpm rhel9	dotnet8.0	<0:8.0.112-1.el9_5	0:8.0.112-1.el9_5
rpm rhel9	dotnet7.0	-	-
rpm rhel9	dotnet6.0	-	-
rpm rhel8	dotnet8.0	<0:8.0.112-1.el8_10	0:8.0.112-1.el8_10
rpm rhel9.4	dotnet8.0	<0:8.0.112-1.el9_4	0:8.0.112-1.el9_4
rpm rhel9	dotnet9.0	<0:9.0.102-1.el9_5	0:9.0.102-1.el9_5

Aliases

1. CVE-2025-211732. NVD-2025-211733. OSV-2025-21173

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.