CNNVD-202507-1030 Information
CNNVD ID
CNNVD-202507-1030
Related CVE
- CNNVD Published: 2025-07-08
Description (Chinese)
Microsoft ASP.NET Core是美国微软(Microsoft)公司的一框跨平台开源框架。该框架用于构建Web应用、物联网应用和移动后端等基于云的应用程序。 Microsoft ASP.NET Core存在安全漏洞,该漏洞源于弱身份验证机制,可能导致权限提升。
Description (English)
Microsoft ASP.NET Core is a frame-based, cross-platform open source framework for Microsoft (MSC) in the United States. The framework is used to construct cloud-based applications such as Web applications, Web-based applications and mobile backends. There is a security gap in Microsoft ASP.NET Core, which stems from weak identification mechanisms and may lead to increased authority.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
微软
Published
2025-07-08
Last Modified
2026-02-24
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24070 https://www.cve.org/CVERecord?id=CVE-2025-24070 https://www.herodevs.com/vulnerability-directory/cve-2025-24070
Patch
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24070
Share on: