To support the growing demands of open source security, OSS Index will migrate to Sonatype Guide on 04/28. To learn more about how to prepare for this transition, click here.

Vulnerability

CVE-2024-43485

Report advisory or correction

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE

References

https://github.com/advisories/GHSA-8g4q-xg66-9fp4

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43485

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-43485

[CVE-2024-43485] CWE-407: Algorithmic Complexity

Description

.NET and Visual Studio Denial of Service Vulnerability

Deviation Notice:

Sonatype's research suggests that this CVE's details differ from those defined at NVD or other reporting sources; sign in for details.

Sign up and see:

Detailed deviation notices:

Detailed deviations
References
Custom Descriptions [Coming Soon]

See System.Text.Json package information