Dynamic Linq 1.0.7.10 through 1.2.25 before 1.3.0 allows attackers to execute arbitrary code and commands when untrusted input to methods including Where, Select, OrderBy is parsed.
History

Fri, 06 Dec 2024 16:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2023-06-22T00:00:00

Updated: 2024-12-06T15:23:54.728Z

Reserved: 2023-05-10T00:00:00

Link: CVE-2023-32571

cve-icon Vulnrichment

Updated: 2024-08-02T15:18:37.644Z

cve-icon NVD

Status : Modified

Published: 2023-06-22T20:15:09.640

Modified: 2024-11-21T08:03:37.590

Link: CVE-2023-32571

cve-icon Redhat

No data.