Security News

Cybersecurity news aggregator

🔓
MEDIUM Vulnerabilities Ubuntu Security

USN-8216-1: .NET vulnerabilities

cve-2026-33116cve-2026-26171cve-2026-32203cve-2026-32178cve-2026-40372
  • What: .NET vulnerabilities in XML and cryptography libraries.
  • Impact: Potential denial of service and privilege escalation.
Read Full Article →

Ludvig Pedersen discovered that the System.Security.Cryptography.Xml library in .NET incorrectly handled certain XML inputs. An attacker could possibly use this issue to consume excessive resources, resulting in a denial of service. (CVE-2026-33116, CVE-2026-26171) Ludvig Pedersen and Kevin Jones discovered that the System.Security.Cryptography.Xml library in .NET incorrectly handled certain XML inputs. An attacker could possibly use this issue to cause .NET to crash, resulting in a denial of service. (CVE-2026-32203) Ludvig Pedersen discovered that the System.Net.Mail component in .NET incorrectly handled certain inputs. An attacker could possibly use this issue to perform a network spoofing attack. (CVE-2026-32178) It was discovered that the Microsoft.AspNetCore.DataProtection library in .NET did not properly verify cryptographic signatures under certain conditions. A remote attacker could possibly use this issue to elevate privileges. (CVE-2026-40372)

Related Articles

CRITICAL Microsoft April 2026 Patch Tuesday fixes 167 flaws, 2 zero-days BleepingComputer LOW USN-8176-1: .NET vulnerabilities Ubuntu Security HIGH NCSC-2026-0114 [1.00] [M/H] Kwetsbaarheden verholpen in Microsoft Developer tools NCSC Netherlands CRITICAL Patch Tuesday - April 2026 Rapid7 Research
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn