5.9

CVSS Score

3.1

-

CVSS Score

Basic Information

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

GHSA-2m65-m22p-9wjw

GHSA-2m65-m22p-9wjw: Duplicate Advisory: .NET Information Disclosure Vulnerability

Duplicate Advisory

This advisory has been withdrawn because it is a duplicate of GHSA-vh55-786g-wjwj. This link is maintained to preserve external references.

Original Description

Microsoft is releasing this security advisory to provide information about a vulnerability in .NET Core 3.1 and .NET 6.0. An information disclosure vulnerability exists in .NET Core 3.1 and .NET 6.0 that could lead to unauthorized access of privileged information.

Affected software

Any .NET 6.0 application running on .NET 6.0.7 or earlier.
Any .NET Core 3.1 applicaiton running on .NET Core 3.1.27 or earlier.

Patches

If you're using .NET 6.0, you should download and install Runtime 6.0.8 or SDK 6.0.108 (for Visual Studio 2022 v17.1) from https://dotnet.microsoft.com/download/dotnet-core/6.0.
If you're using .NET Core 3.1, you should download and install Runtime 3.1.28 (for Visual Studio 2019 v16.9) from https://dotnet.microsoft.com/download/dotnet-core/3.1.

(GitHub Advisory)

Miggo Vulnerability Database

→

GHSA-2m65-m22p-9wjw

GHSA-2m65-m22p-9wjw:

5.9

CVSS Score

3.1

-

CVSS Score

Basic Information

Technical Details

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
System.Security.Cryptography.Xml	nuget	< 4.7.1	4.7.1
System.Security.Cryptography.Xml	nuget	>= 5.0.0, < 6.0.1	6.0.1
Microsoft.AspNetCore.App.Runtime.win-x64	nuget	>= 3.1.0, < 3.1.28	3.1.28
Microsoft.AspNetCore.App.Runtime.win-x64	nuget	>= 6.0.0, < 6.0.8	6.0.8
Microsoft.AspNetCore.App.Runtime.linux-x64	nuget	>= 3.1.0, < 3.1.28	3.1.28
Microsoft.AspNetCore.App.Runtime.linux-x64	nuget	>= 6.0.0, < 6.0.8	6.0.8
Microsoft.AspNetCore.App.Runtime.win-x86	nuget	>= 3.1.0, < 3.1.28	3.1.28
Microsoft.AspNetCore.App.Runtime.win-x86	nuget	>= 6.0.0, < 6.0.8	6.0.8
Microsoft.AspNetCore.App.Runtime.osx-x64	nuget	>= 3.1.0, < 3.1.28	3.1.28
Microsoft.AspNetCore.App.Runtime.osx-x64	nuget	>= 6.0.0, < 6.0.8	6.0.8
Microsoft.AspNetCore.App.Runtime.linux-musl-x64	nuget	>= 3.1.0, < 3.1.28	3.1.28
Microsoft.AspNetCore.App.Runtime.linux-musl-x64	nuget	>= 6.0.0, < 6.0.8	6.0.8
Microsoft.AspNetCore.App.Runtime.linux-arm64	nuget	>= 3.1.0, < 3.1.28	3.1.28
Microsoft.AspNetCore.App.Runtime.linux-arm64	nuget	>= 6.0.0, < 6.0.8	6.0.8
Microsoft.AspNetCore.App.Runtime.linux-arm	nuget	>= 3.1.0, < 3.1.28	3.1.28
Microsoft.AspNetCore.App.Runtime.linux-arm	nuget	>= 6.0.0, < 6.0.8	6.0.8
Microsoft.AspNetCore.App.Runtime.win-arm64	nuget	>= 3.1.0, < 3.1.28	3.1.28
Microsoft.AspNetCore.App.Runtime.win-arm64	nuget	>= 6.0.0, < 6.0.8	6.0.8
Microsoft.AspNetCore.App.Runtime.win-arm	nuget	>= 3.1.0, < 3.1.28	3.1.28
Microsoft.AspNetCore.App.Runtime.win-arm	nuget	>= 6.0.0, < 6.0.8	6.0.8
Microsoft.AspNetCore.App.Runtime.linux-musl-arm64	nuget	>= 3.1.0, < 3.1.28	3.1.28
Microsoft.AspNetCore.App.Runtime.linux-musl-arm64	nuget	>= 6.0.0, < 6.0.8	6.0.8
Microsoft.AspNetCore.App.Runtime.linux-musl-arm	nuget	>= 3.1.0, < 3.1.28	3.1.28
Microsoft.AspNetCore.App.Runtime.linux-musl-arm	nuget	>= 6.0.0, < 6.0.8	6.0.8

Technical Details

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stems from insecure XML parsing in signature verification (CVE-2022-34716). Both CheckSignature and LoadXml are core methods handling XML signature processing. Patches would focus on adding XmlResolver restrictions and DTD processing limitations in these methods. Runtime detection would show these cryptographic XML handling functions being called with malicious payloads during exploitation attempts.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.W** rul*s *v*il**l* *or Mi**o *ustom*rs only.

Reasoning

*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.*v*il**l* *or Mi**o *ustom*rs only.

5.9

-

Basic Information

Basic Information

Concerned about an active attack path?

GHSA-2m65-m22p-9wjw: Duplicate Advisory: .NET Information Disclosure Vulnerability

Duplicate Advisory

Original Description

Affected software

Patches

GHSA-2m65-m22p-9wjw:

5.9

-

Basic Information

Basic Information

Technical Details

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability IntelligenceMiggo AI

5.9

5.9

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

GHSA-2m65-m22p-9wjw: Duplicate Advisory: .NET Information Disclosure Vulnerability

Duplicate Advisory

Original Description

Affected software

Patches

Basic Information

Basic Information

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI

Vulnerability Intelligence
Miggo AI