PT-2026-58129 · Microsoft · Aspnetcore.Odata

Published

2026-07-14

·

Updated

2026-07-15

·

CVE-2026-45646

CVSS v3.1

7.5

High

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions ASP.NET Core OData versions prior to 7.8.0 ASP.NET Core OData versions prior to 9.5.0
Description Allocation of resources without limits or throttling allows an unauthorized attacker to remotely cause a denial of service over a network, potentially knocking applications offline.
Recommendations Update to version 7.8.0. Update to version 9.5.0.

Fix

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-45646

Affected Products

Aspnetcore.Odata