VDB

RHSA-2026%3A25114

RHSA-2026%3A25114 PUBLISHED CVSS 6.199999809265137 MEDIUM

A flaw was found in .NET. This vulnerability, related to improper link resolution before file access (also known as 'link following'), allows an unauthorized local attacker to perform unauthorized tampering. This could lead to integrity compromise of local files.

Risk Scores

CVSS 3.1
6.199999809265137
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Affected Products

VendorProductVersions
Red Hatdotnet-templates-10.0-0:10.0.109-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)10.0-0
Red Hatdotnet-sdk-dbg-10.0-0:10.0.109-1.el8_10.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)10.0-0
Red Hatdotnet10.0-debuginfo-0:10.0.109-1.el8_10.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)10.0-debuginfo
Red Hataspnetcore-targeting-pack-10.0-0:10.0.9-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)10.0-0
Red Hatdotnet-sdk-aot-10.0-0:10.0.109-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)10.0-0
Red Hatdotnet-host-0:10.0.9-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)10.0.9-1.el8
Red Hatdotnet-hostfxr-10.0-0:10.0.9-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)10.0-0
Red Hatdotnet-sdk-aot-10.0-0:10.0.109-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)10.0-0
Red Hatdotnet-sdk-10.0-debuginfo-0:10.0.109-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)10.0-debuginfo
Red Hatdotnet-hostfxr-10.0-0:10.0.9-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)10.0-0
Red Hatdotnet-templates-10.0-0:10.0.109-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)10.0-0
Red Hatdotnet-targeting-pack-10.0-0:10.0.9-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)10.0-0
Red Hataspnetcore-runtime-dbg-10.0-0:10.0.9-1.el8_10.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)10.0-0
Red Hatdotnet-0:10.0.109-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 8)10.0.109-1.el8
Red Hatdotnet-host-0:10.0.9-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)10.0.9-1.el8
Red Hatdotnet-runtime-10.0-debuginfo-0:10.0.9-1.el8_10.s390x as a component of Red Hat Enterprise Linux CRB (v. 8)10.0-debuginfo
Red Hatdotnet-hostfxr-10.0-debuginfo-0:10.0.9-1.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)10.0-debuginfo
Red Hatdotnet-sdk-aot-10.0-0:10.0.109-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)10.0-0
Red Hatdotnet-hostfxr-10.0-0:10.0.9-1.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)10.0-0
Red Hatdotnet-runtime-10.0-0:10.0.9-1.el8_10.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 8)10.0-0

…and 158 more

Timeline

  • Jun 10, 2026 CVE Published
  • Jun 11, 2026 CVE Updated
  • Jun 11, 2026 Distribution Patch
  • Jun 11, 2026 Distribution Patch
  • Jun 11, 2026 Security Advisory
  • Jun 11, 2026 Security Advisory
  • Jun 11, 2026 Security Advisory
  • Jun 11, 2026 Security Advisory
  • Jun 11, 2026 Security Advisory
Open in Interactive Console →
$ Console Community · 100/wk Open console ›