CVE-2023-36435

Description

Microsoft QUIC Denial of Service Vulnerability

Affected packages (4)

• Bitnami/dotnet>= 7.0.0, < 7.0.13
• Bitnami/dotnet-sdk>= 7.0.0, < 7.0.13
• NuGet/Microsoft.Native.Quic.MsQuic.OpenSSLfrom 0, < 2.2.3
• NuGet/Microsoft.Native.Quic.MsQuic.Schannelfrom 0, < 2.2.3

CVSS scores

References (5)

• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2023-36435
• PATCHhttps://github.com/microsoft/msquic
• WEBhttps://github.com/microsoft/msquic/commit/d364feeda0dd8b729eca6fef149c1ef98630f0cb
• WEBhttps://github.com/microsoft/msquic/security/advisories/GHSA-fr44-546p-7xcp
• WEBhttps://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36435