Microsoft · Asp.Net Core · CVE-2025-7326
Name of the Vulnerable Software and Affected Versions:
ASP.NET Core (affected versions not specified)
Description:
The issue concerns weak authentication in End Of Life (EOL) ASP.NET Core, allowing an unauthorized attacker to elevate privileges over a network. It affects only EOL software components. The vendor, Microsoft, has indicated there will be no future updates nor support provided.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.