CVE-2021-34532

State: PUBLISHED · Published: 2021-08-12 · Updated: 2024-08-04 · Assigner: microsoft

Description

ASP.NET Core and Visual Studio Information Disclosure Vulnerability

CWE

Affected

Microsoft / ASP.NET Core 2.1 — v=2.0 <2.1.29 [affected]
Microsoft / ASP.NET Core 3.1 — v=3.0 <3.1.18 [affected]
Microsoft / ASP.NET Core 5.0 — v=5.0 <5.0.9 [affected]
Microsoft / Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) — v=16.0 <16.4.25 [affected]
Microsoft / Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) — v=16.0.0 <16.7.18 [affected]
Microsoft / Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) — v=15.0.0 <16.9.10 [affected]
Microsoft / Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9) — v=16.10.0 <16.10.5 [affected]
Microsoft / Visual Studio 2019 for Mac version 8.10 — v=8.1.0 <8.10.7 [affected]

CVSS

3.1 score=5.5 severity=MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

References

Source

cvelistV5-main/cves/2021/34xxx/CVE-2021-34532.json