GHSA-987x-96fq-9384

GHSA-987x-96fq-9384 PUBLISHED CVSS 4.800000190734863 MEDIUM

Inadequate encryption strength in .NET, .NET Framework, Visual Studio allows an authorized attacker to disclose information over a network.

Risk Scores

CVSS v3.1

4.800000190734863

CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

Vendor	Product	Versions
csaf_redhat	dotnet-sdk-aot-9.0-debuginfo-0:9.0.111-1.el10_0.x86_64
csaf_redhat	dotnet-runtime-9.0-0:9.0.10-1.el8_10.s390x
csaf_redhat	dotnet-apphost-pack-9.0-debuginfo-0:9.0.10-1.el8_10.x86_64
csaf_redhat	dotnet-hostfxr-8.0-0:8.0.21-1.el9_6.aarch64
csaf_redhat	dotnet-runtime-dbg-8.0-0:8.0.21-1.el9_6.s390x
csaf_redhat	dotnet-runtime-9.0-debuginfo-0:9.0.10-1.el9_6.x86_64
csaf_redhat	netstandard-targeting-pack-2.1-0:9.0.111-1.el10_0.aarch64
csaf_redhat	dotnet-runtime-dbg-9.0-0:9.0.10-1.el10_0.aarch64
csaf_redhat	dotnet-runtime-dbg-8.0-0:8.0.21-1.el9_6.x86_64
csaf_redhat	registry.redhat.io/devspaces/server-rhel9@sha256:5898927ebcb955afdf51695a028b2e3fe4dfb08fb12d3e4daa75d1266562bdf9_arm64
csaf_redhat	dotnet-runtime-8.0-0:8.0.21-1.el9_6.s390x
csaf_redhat	dotnet-apphost-pack-8.0-0:8.0.21-1.el8_10.x86_64
csaf_redhat	dotnet-runtime-8.0-0:8.0.21-1.el9_4.aarch64
Microsoft	Microsoft .NET Framework 2.0 Service Pack 2	2.0.0
csaf_redhat	dotnet-apphost-pack-8.0-0:8.0.21-1.el9_4.x86_64
csaf_redhat	dotnet-sdk-9.0-0:9.0.111-1.el8_10.aarch64
csaf_redhat	dotnet-apphost-pack-9.0-debuginfo-0:9.0.10-1.el8_10.s390x
csaf_redhat	dotnet-host-0:9.0.10-1.el8_10.aarch64
csaf_redhat	dotnet8.0-debuginfo-0:8.0.121-1.el9_4.ppc64le
Microsoft	Microsoft Visual Studio 2022 version 17.10	17.10.0

…and 700 more