jprdonnelly/core
1
0
Fork 0
mirror of synced 2025-12-19 18:06:02 -05:00
Code Issues Projects Releases Wiki Activity
Files
68f06e817742dfcce948f6c27233f6a0017525f5
core/release-notes/10.0/cve.md
Rahul Bhandari 68f06e8177 Artifacts for .NET December Servicing Release (#10187) 
* Artifacts for .NET December Servicing Release

* Update 10.0.1.md
2025-12-09 10:32:50 -08:00

17 lines
966 B
Markdown
Raw Blame History

# .NET 10 CVEs
The .NET Team releases [monthly updates for .NET 10](https://github.com/dotnet/announcements/labels/.NET%2010.0) on [Patch Tuesday](https://en.wikipedia.org/wiki/Patch_Tuesday). These updates often include security fixes. If you are on an older version, your app may be vulnerable.
Your app needs to be on the latest .NET 10 patch version to be secure. The longer you wait to upgrade, the greater the exposure to CVEs.
## Which CVEs apply to my app?
Your app may be vulnerable to the following published security [CVEs](https://www.cve.org/) if you are using an older version.
- 10.0.1 (December 2025)
- No new CVEs
- 10.0.0 (November 2025)
- No new CVEs
The CVE exposure is cumulative. For example, `10.0.0` users may be vulnerable to the CVEs present in `10.0.0` and newer releases. Similarly, `10.0.3` users may be vulnerable to the CVEs present in `10.0.4` and newer releases. The latest release is not vulnerable to any published CVEs.
Reference in New Issue View Git Blame Copy Permalink