Vulnerability Database
Blog
FAQ
Docs
CVE-2023-28260
Source
https://nvd.nist.gov/vuln/detail/CVE-2023-28260
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-28260.json
Aliases
BIT-dotnet-2023-28260
BIT-dotnet-sdk-2023-28260
GHSA-w4m3-43gp-x8hx
Related
USN-6006-1
Published
2023-04-11T21:15:25Z
Modified
2023-12-06T01:02:57.404609Z
Details
.NET DLL Hijacking Remote Code Execution Vulnerability
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-28260
Affected packages
Git
/
github.com/dotnet/core
Affected ranges
Type
GIT
Repo
https://github.com/dotnet/core
Events
Introduced
63772e2191a750dd3cafa75914cacdb038c7520c
Fixed
5616a61dc70f59803b31d800fc79c81915ea0575
Introduced
ee849590a02cc5cd61eff18aa64bf985ec45124d
Affected versions
v3.*
v3.1.31
v3.1.32
v6.*
v6.0.11
v6.0.12
v6.0.13
v6.0.14
v6.0.15
v6.0.16
v7.*
v7.0.0
v7.0.1
v7.0.2
v7.0.3
v7.0.4
v8.*
v8.0.0-preview.1
v8.0.0-preview.2
CVE-2023-28260 - OSV