Skip to main content

Improperly Implemented Security Check for Standard

CVE-2023-36558

Severity Medium
Score 5.5/10

Summary

ASP.NET Core - Security Feature Bypass Vulnerability. This issue affects the package Microsoft.AspNetCore.Components versions 6.0.x prior to 6.0.25, 7.0.x prior to 7.0.14, and 8.0.0-rc.2.23480.2.

  • LOW
  • LOCAL
  • NONE
  • UNCHANGED
  • NONE
  • LOW
  • HIGH
  • NONE

CWE-358 - Improperly Implemented Security Check for Standard

The software does not implement or incorrectly implements one or more security-relevant checks as specified by the design of a standardized algorithm, protocol, or technique.

Advisory Timeline

  • Published