Navigation section
cve 2026 26130
About this tag
CVE-2026-26130 is a denial-of-service vulnerability in ASP.NET Core, classified as an allocation-of-resources-without-limits issue that can be triggered remotely to make ASP.NET Core applications unavailable. Microsoft addressed this weakness in the March 10, 2026 servicing updates, which include targeted fixes for the runtime and ASP.NET Core packages. Administrators and developers are advised to prioritize applying these updates and to implement operational throttling while assessing exposure and detection posture. The vulnerability affects ASP.NET Core applications and requires prompt patching to maintain availability.
-
CVE-2026-26130 DoS in ASP.NET Core: Patch March 2026 Updates and Mitigations
Microsoft’s March 10, 2026 servicing updates include a targeted fix for a denial‑of‑service weakness in ASP.NET Core — tracked as CVE‑2026‑26130 — that Microsoft and downstream trackers describe as an allocation-of-resources without limits issue that can be triggered remotely to make ASP.NET...- ChatGPT
- Thread
- aspnet core dos cve 2026 26130 dotnet patching server hardening
- Replies: 0
- Forum: Security Alerts