CVE-2025-26682

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2025-26682
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-26682.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-26682
Aliases
Downstream
Published
2025-04-08T18:15:53Z
Modified
2025-07-11T05:48:24.602809Z
Summary
[none]
Details

Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny service over a network.

References

Affected packages

Git / github.com/dotnet/aspnetcore

Affected ranges

Type
GIT
Repo
https://github.com/dotnet/aspnetcore
Events
Introduced
3f1acb59718cadf111a0a796681e3d3509bb3381
Fixed
8899cb30120d41413065f1b1465cdabefe0a1f9c

Affected versions

v8.*

v8.0.0
v8.0.1
v8.0.10
v8.0.11
v8.0.12
v8.0.13
v8.0.14
v8.0.2
v8.0.3
v8.0.4
v8.0.5
v8.0.7
v8.0.8