Vulnerability Database
Blog
FAQ
Docs
CVE-2024-21319
See a problem?
Please try reporting it
to the source
first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2024-21319
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-21319.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2024-21319
Aliases
BIT-dotnet-2024-21319
BIT-dotnet-sdk-2024-21319
GHSA-59j7-ghrg-fj52
Related
ALSA-2024:0150
ALSA-2024:0151
ALSA-2024:0152
ALSA-2024:0156
ALSA-2024:0157
ALSA-2024:0158
RHSA-2024:0150
RHSA-2024:0151
RHSA-2024:0152
RHSA-2024:0156
RHSA-2024:0157
RHSA-2024:0158
RHSA-2024:0255
RLSA-2024:0157
RLSA-2024:0158
UBUNTU-CVE-2024-21319
USN-6578-1
Published
2024-01-09T19:15:12Z
Modified
2024-10-12T11:16:48.265020Z
Severity
6.8 (Medium)
CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H
CVSS Calculator
Summary
[none]
Details
Microsoft Identity Denial of service vulnerability
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21319
Affected packages
Git
/
github.com/azuread/azure-activedirectory-identitymodel-extensions-for-dotnet
Affected ranges
Type
GIT
Repo
https://github.com/azuread/azure-activedirectory-identitymodel-extensions-for-dotnet
Events
Introduced
2e7c701881d3d67aff7bf54f22063a49bc4727d2
Fixed
e67b25be77532af9ba405670b34b4d263d505fde
Type
GIT
Repo
https://github.com/dotnet/core
Events
Introduced
d78b3180414d35d6c7d136db753474e2ae2b33df
Fixed
73deb1784e9f579ce38c044f8cad095c5d4e4f93
Affected versions
8.*
8.0.0
v6.*
v6.0.25
v7.*
v7.0.14
v8.*
v8.0.0
CVE-2024-21319 - OSV