BIT-dotnet-sdk-2025-55247
See a problem?- Import Source
- https://github.com/bitnami/vulndb/tree/main/data/dotnet-sdk/BIT-dotnet-sdk-2025-55247.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/BIT-dotnet-sdk-2025-55247
- Aliases
- Published
- 2025-10-24T14:39:45.080Z
- Modified
- 2025-10-24T15:42:23.191734Z
- Summary
- .NET Elevation of Privilege Vulnerability
- Details
-
Improper link resolution before file access ('link following') in .NET allows an authorized attacker to elevate privileges locally.
- Database specific
{ "severity": "High", "cpes": [ "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*" ] }- References
Affected packages
Bitnami / dotnet-sdk
Package
- Name
- dotnet-sdk
- Purl
- pkg:bitnami/dotnet-sdk
Severity
- 7.3 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H CVSS Calculator