Description
Incorrect implementation of authentication algorithm in ASP.NET Core allows an authorized attacker to elevate privileges over a network.
Analysis and contextual insights are available on OpenCVE Cloud.
Remediation
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
Advisories
No advisories yet.
References
History
Tue, 14 Jul 2026 18:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Incorrect implementation of authentication algorithm in ASP.NET Core allows an authorized attacker to elevate privileges over a network. | |
| Title | ASP.NET Core Elevation of Privilege Vulnerability | |
| First Time appeared |
Microsoft
Microsoft .net Microsoft visual Studio 2022 Microsoft visual Studio 2026 |
|
| Weaknesses | CWE-303 | |
| CPEs | cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:* cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:* cpe:2.3:a:microsoft:visual_studio_2026:*:*:*:*:*:*:*:* |
|
| Vendors & Products |
Microsoft
Microsoft .net Microsoft visual Studio 2022 Microsoft visual Studio 2026 |
|
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: microsoft
Published:
Updated: 2026-07-14T19:38:04.810Z
Reserved: 2026-05-18T23:53:33.897Z
Link: CVE-2026-47300
No data.
No data.
No data.
OpenCVE Enrichment
No data.
Weaknesses