AVG-1698 log

Package dotnet-runtime, dotnet-sdk
Status Fixed
Severity High
Type arbitrary code execution
Affected 5.0.3.sdk103-2
Fixed 5.0.4.sdk104-1
Current 8.0.4.sdk104-1 [extra]
Ticket FS#69317
Created Tue Mar 16 11:07:44 2021
Issue Severity Remote Type Description
CVE-2021-26701 High Yes Arbitrary code execution
A remote code execution vulnerability exists in .NET 5.0 before Runtime 5.0.4 and SDK 5.0.104 as well as .NET Core 3.1 before Runtime 3.1.13 and SDK 3.1.113...
Date Advisory Package Type
25 Mar 2021 ASA-202103-21 dotnet-sdk arbitrary code execution
25 Mar 2021 ASA-202103-20 dotnet-runtime arbitrary code execution