Dot NET Core Remote Code Execution Vulnerability [CVE-2021-26701]

March 9, 2021 Duncan 4149 Views 0 Comments CVE-2021-26701, Microsoft, Microsoft Dot Net, Remote Code Execution Vulnerability 0 min read

CVE number – CVE-2021-26701

Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 5.0, .NET Core 3.1, and .NET Core 2.1. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability.

A remote code execution vulnerability exists in .NET 5 and .NET Core due to how text encoding is performed.

The vulnerable package is System.Text.Encodings.Web . Upgrading your package and redeploying your app should be sufficient to address this vulnerability.

Further information – https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2021-26701

Duncan

Duncan is a technology professional with over 20 years experience of working in various IT roles. He has a interest in cyber security, and has a wide range of other skills in radio, electronics and telecommunications.

Dot NET Core Remote Code Execution Vulnerability [CVE-2021-26701]

Like this:

Related Posts

Duncan

Leave a ReplyCancel reply

Share this:

Like this:

Related Posts

Duncan

Leave a ReplyCancel reply