Description
Authentication bypass by assumed-immutable data in ASP.NET Core allows an authorized attacker to elevate privileges over a network.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
No advisories yet.
References
History
Tue, 14 Jul 2026 20:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Tue, 14 Jul 2026 19:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Authentication bypass by assumed-immutable data in ASP.NET Core allows an authorized attacker to elevate privileges over a network. | |
| Title | ASP.NET Core Elevation of Privilege Vulnerability | |
| First Time appeared |
Microsoft
Microsoft .net Microsoft visual Studio 2022 Microsoft visual Studio 2026 |
|
| Weaknesses | CWE-302 CWE-863 CWE-90 |
|
| CPEs | cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:* cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:* cpe:2.3:a:microsoft:visual_studio_2026:*:*:*:*:*:*:*:* |
|
| Vendors & Products |
Microsoft
Microsoft .net Microsoft visual Studio 2022 Microsoft visual Studio 2026 |
|
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: microsoft
Published:
Updated: 2026-07-14T19:38:06.521Z
Reserved: 2026-05-18T23:53:33.898Z
Link: CVE-2026-47303
Updated: 2026-07-14T19:11:27.008Z
No data.
No data.
OpenCVE Enrichment
No data.