CVE-2024-20672

EUVD-2024-18387
.NET Denial of Service Vulnerability
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 85%
Affected Products (NVD)
VendorProductVersion
microsoft.net
6.0.0 ≤
𝑥
< 6.0.26
microsoft.net
7.0.0 ≤
𝑥
< 7.0.15
𝑥
= Vulnerable software versions
Amazon Linux logo
Amazon Linux Releases
Amazon Package
Release
aspnetcore-runtime-6.0
Amazon Linux 2023
0:6.0.27-1.amzn2023.0.1
fixed
aspnetcore-targeting-pack-6.0
Amazon Linux 2023
0:6.0.27-1.amzn2023.0.1
fixed
dotnet
Amazon Linux 2023
0:6.0.127-1.amzn2023.0.1
fixed
dotnet-apphost-pack-6.0
Amazon Linux 2023
0:6.0.27-1.amzn2023.0.1
fixed
dotnet-apphost-pack-6.0-debuginfo
Amazon Linux 2023
0:6.0.27-1.amzn2023.0.1
fixed
dotnet-host
Amazon Linux 2023
0:6.0.27-1.amzn2023.0.1
fixed
dotnet-host-debuginfo
Amazon Linux 2023
0:6.0.27-1.amzn2023.0.1
fixed
dotnet-hostfxr-6.0
Amazon Linux 2023
0:6.0.27-1.amzn2023.0.1
fixed
dotnet-hostfxr-6.0-debuginfo
Amazon Linux 2023
0:6.0.27-1.amzn2023.0.1
fixed
dotnet-runtime-6.0
Amazon Linux 2023
0:6.0.27-1.amzn2023.0.1
fixed
dotnet-runtime-6.0-debuginfo
Amazon Linux 2023
0:6.0.27-1.amzn2023.0.1
fixed
dotnet-sdk-6.0
Amazon Linux 2023
0:6.0.127-1.amzn2023.0.1
fixed
dotnet-sdk-6.0-debuginfo
Amazon Linux 2023
0:6.0.127-1.amzn2023.0.1
fixed
dotnet-sdk-6.0-source-built-artifacts
Amazon Linux 2023
0:6.0.127-1.amzn2023.0.1
fixed
dotnet-targeting-pack-6.0
Amazon Linux 2023
0:6.0.27-1.amzn2023.0.1
fixed
dotnet-templates-6.0
Amazon Linux 2023
0:6.0.127-1.amzn2023.0.1
fixed
dotnet6.0-debuginfo
Amazon Linux 2023
0:6.0.127-1.amzn2023.0.1
fixed
dotnet6.0-debugsource
Amazon Linux 2023
0:6.0.127-1.amzn2023.0.1
fixed
netstandard-targeting-pack-2.1
Amazon Linux 2023
0:6.0.127-1.amzn2023.0.1
fixed