ASP.NET Core and Visual Studio Information Disclosure Vulnerability
CVE-2021-34532

5.5MEDIUM

Key Information:

Vendor: Microsoft
Status: Asp.net Core 2.1; Asp.net Core 3.1; Asp.net Core 5.0; Microsoft Visual Studio 2019 Version 16.4 (includes 16.0 - 16.3)
Vendor: CVE Published:; 12 August 2021

Summary

ASP.NET Core and Visual Studio Information Disclosure Vulnerability

Affected Version(s)

ASP.NET Core 2.1 Unknown 2.0 < 2.1.29

ASP.NET Core 3.1 Unknown 3.0 < 3.1.18

ASP.NET Core 5.0 Unknown 5.0 < 5.0.9

References

https://portal.msrc.microsoft.com/en-US/security-guidance...

x_refsource_MISC

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 12, 2021
Vulnerability Reserved
Jun 9, 2021

Collectors

NVD DatabaseMitre Database

.