GHSA-jc8g-xhw5-6x46

Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2018/10/GHSA-jc8g-xhw5-6x46/GHSA-jc8g-xhw5-6x46.json
Aliases
  • CVE-2018-0786
Published
2018-10-16T19:59:05Z
Modified
2022-06-10T02:20:35.380398Z
Details

Microsoft .NET Framework 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, .NET Core 1.0 and 2.0, and PowerShell Core 6.0.0 allow a security feature bypass vulnerability due to the way certificates are validated, aka ".NET Security Feature Bypass Vulnerability."

References

Affected packages

NuGet / Microsoft.NETCore.UniversalWindowsPlatform

Microsoft.NETCore.UniversalWindowsPlatform

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.2.0
Fixed
5.2.4

Affected versions

5.*

5.2.0
5.2.1
5.2.2
5.2.3

NuGet / Microsoft.NETCore.UniversalWindowsPlatform

Microsoft.NETCore.UniversalWindowsPlatform

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.3.0
Fixed
5.3.5

Affected versions

5.*

5.3.0
5.3.1
5.3.2
5.3.3
5.3.4

NuGet / Microsoft.NETCore.UniversalWindowsPlatform

Microsoft.NETCore.UniversalWindowsPlatform

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.4.0
Fixed
5.4.2

Affected versions

5.*

5.4.0
5.4.1

NuGet / Microsoft.NETCore.UniversalWindowsPlatform

Microsoft.NETCore.UniversalWindowsPlatform

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.0.0
Fixed
6.0.6

Affected versions

6.*

6.0.1
6.0.2
6.0.4
6.0.5

NuGet / Microsoft.NETCore.UniversalWindowsPlatform

Microsoft.NETCore.UniversalWindowsPlatform

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.0.0
Fixed
6.0.6

Affected versions

6.*

6.0.1
6.0.2
6.0.4
6.0.5