 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.834852 |
| Category: | Windows |
| Title: | .NET Core RCE Vulnerability (January-1 2025) |
| Summary: | This host is missing an important security; update according to Microsoft security update January 2025. |
| Description: | Summary: This host is missing an important security update according to Microsoft security update January 2025. Vulnerability Insight: The flaw exists due to a remote code execution vulnerability in .NET Core. Vulnerability Impact: Successful exploitation allows an attacker to conduct remote code execution. Affected Software/OS: .NET Core runtime version 5.0.x prior to 5.0.3, 3.1.x prior to 3.1.12, 2.1.x prior to 2.1.25 and .NET Core SDK version 5.0.x prior to 5.0.103, 3.1.x prior to 3.1.112 and 2.1.x prior to 2.1.521. Solution: Update .NET Core runtime to version 5.0.3 or 3.1.12 or 2.1.25 or later and update .NET Core SDK to version 5.0.103 or 3.1.112 or 2.1.521 or later. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2021-24112 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-24112 |
| Copyright | Copyright (C) 2025 Greenbone AG |
| This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |