PT-2025-15523 · Microsoft+4 · Asp.Net Core+4

James Newton-King

Published

2025-04-08

Updated

2025-12-16

CVE-2025-26682

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions: ASP.NET Core (affected versions not specified)

Description: The issue allows an unauthorized attacker to deny service over a network due to the allocation of resources without limits or throttling.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-770

Related Identifiers

ALT-PU-2025-13072

ALT-PU-2025-13074

ALT-PU-2025-13673

ALT-PU-2025-13674

ALT-PU-2025-15796

ALT-PU-2025-15797

BDU:2025-04038

BIT-ASPNET-CORE-2025-26682

CVE-2025-26682

USN-7427-1

Affected Products

Alt Linux

Asp.Net Core

Linuxmint

Red Os

Ubuntu

PT-2025-15523 · Microsoft+4 · Asp.Net Core+4

CVE-2025-26682

Weakness Enumeration

Related Identifiers

Affected Products

References · 48