CVE-2021-31204
HIGH7.8EPSS 3.7%.NET and Visual Studio Elevation of Privilege Vulnerability
Published: 3/6/2024Modified: 5/20/2025
Also known as:BIT-dotnet-2021-31204BIT-dotnet-sdk-2021-31204
Description
.NET and Visual Studio Elevation of Privilege Vulnerability
Affected packages (2)
- Bitnami/dotnet>= 5.0.0, < 5.0.6
- Bitnami/dotnet-sdk>= 5.0.0, < 5.0.6
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.8 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
References (8)
- WEBhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4F3VM3RMPE7PNNLLI3BPCSAXITQZCFCA/
- WEBhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6M7KL3KTHJVQNRA3CWFUTESQJARQEHSZ/
- WEBhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FVMWZPF4FR6JPFSNAIDIUDULHZJBVCW6/
- WEBhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LFXJPQUYUITJMV75YN3XIGE3KKN5GOCU/
- WEBhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UV4ITB3SUDGR23G7XALUVKFJMZERFUKF/
- WEBhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZWF25Z3CZ6LYCOHZ7FPSFAQ426JUBUZ4/
- WEBhttps://nvd.nist.gov/vuln/detail/CVE-2021-31204
- WEBhttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31204