CVE-2023-28260
- Source
- https://cve.org/CVERecord?id=CVE-2023-28260
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-28260.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2023-28260
- Aliases
- Downstream
- Related
- Published
- 2023-04-11T21:15:25.493Z
- Modified
- 2026-03-13T07:33:09.438141Z
- Severity
-
- 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
.NET DLL Hijacking Remote Code Execution Vulnerability
- References
Affected packages
Git / github.com/dotnet/core
Affected versions
v3.*
v3.1.21
v3.1.22
v3.1.23
v3.1.24
v3.1.25
v3.1.26
v3.1.27
v3.1.28
v3.1.29
v3.1.30
v3.1.31
v3.1.32
v5.*
v5.0.12
v5.0.13
v5.0.14
v5.0.15
v5.0.16
v5.0.17
v6.*
v6.0.0
v6.0.1
v6.0.10
v6.0.11
v6.0.12
v6.0.13
v6.0.14
v6.0.15
v6.0.2
v6.0.3
v6.0.4
v6.0.5
v6.0.6
v6.0.7
v6.0.8
v6.0.9
v7.*
v7.0.0
v7.0.0-preview.1
v7.0.0-preview.2
v7.0.0-preview.3
v7.0.0-preview.4
v7.0.0-preview.5
v7.0.0-preview.6
v7.0.0-preview.7
v7.0.0-rc.1
v7.0.0-rc.2
v7.0.1
v7.0.2
v7.0.3
v7.0.4
v8.*
v8.0.0-preview.1
v8.0.0-preview.2
Database specific
unresolved_ranges
[
{
"events": [
{
"introduced": "17.0"
},
{
"fixed": "17.0.21"
}
]
},
{
"events": [
{
"introduced": "17.2"
},
{
"fixed": "17.2.15"
}
]
},
{
"events": [
{
"introduced": "17.4"
},
{
"fixed": "17.4.7"
}
]
},
{
"events": [
{
"introduced": "17.5"
},
{
"fixed": "17.5.4"
}
]
}
]
source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-28260.json"