PT-2023-7072 · Microsoft · Asp.Net Core

Barry Dorans

Published

2023-11-14

Updated

2025-10-09

CVE-2023-36038

CVSS v2.0

8.5

High

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:C

Name of the Vulnerable Software and Affected Versions ASP.NET Core (affected versions not specified)

Description The issue is related to incorrect cleanup or release of resources in the ASP.NET Core platform, which can be exploited by a remote attacker to cause a denial of service.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Improper Resource Release

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-404CWE-400

Related Identifiers

ALT-PU-2024-2554

ALT-PU-2024-2556

ALT-PU-2024-2557

BDU:2023-08097

BIT-ASPNET-CORE-2023-36038

BIT-DOTNET-2023-36038

BIT-DOTNET-SDK-2023-36038

CVE-2023-36038

Affected Products

Asp.Net Core

PT-2023-7072 · Microsoft · Asp.Net Core

CVE-2023-36038

Weakness Enumeration

Related Identifiers

Affected Products

References · 36