Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.5
ASP.NET Core: Unrestricted Resource Allocation Leads to Service Denial
GHSA-vh8f-65qg-3m8j
Summary
A security issue in ASP.NET Core's resource allocation allows an attacker to consume all available resources, causing a denial-of-service. This affects all users who rely on ASP.NET Core for web services. Update to the latest version to resolve this issue.
What to do
- Update microsoft.aspnetcore.app.runtime.linux-arm to version 8.0.25.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| – | microsoft.aspnetcore.app.runtime.linux-arm | > 8.0.0 , <= 8.0.24 | 8.0.25 |
Original title
Duplicate Advisory: .NET Denial of Service Vulnerability
Original description
### Duplicate Advisory
This advisory has been withdrawn because it is a duplicate of GHSA-4vgm-c2wm-63mw. This link is maintained to preserve external references.
### Original Description
Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny service over a network.
This advisory has been withdrawn because it is a duplicate of GHSA-4vgm-c2wm-63mw. This link is maintained to preserve external references.
### Original Description
Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny service over a network.
ghsa CVSS3.1
7.5
Vulnerability type
CWE-770
Allocation of Resources Without Limits
Published: 10 Mar 2026 · Updated: 13 Mar 2026 · First seen: 11 Mar 2026