Dozens of Vulnerable NuGet Packages Allow Attackers to Target .NET Platform

7 July 2021

An analysis of off-the-shelf packages hosted on the NuGet repository has revealed 51 unique software components to be vulnerable to actively exploited, high-severity vulnerabilities, once again underscoring the threat posed by third-party dependencies to the software development process. In light of the growing number of cyber incidents that target the software supply chain, there is an urgent need to assess such third-party modules for any security risks and minimize the attack surface, ReversingLabs researcher Karlo Zanki said in a report shared with The Hacker News.

Read full article on The Hacker News

Date:

7 July 2021

Categorie(s):

NEWS

Tag(s):

.NET, Attackers, Frameworks, NuGet, Packages

Still On CentOS 6? ELevate Can Now Lift and Shift You to a Modern RHEL Clone26 April 2024
Zero Trust strategies for navigating IoT/OT security challenges26 April 2024
Second time lucky for Thoma Bravo, which scoops up Darktrace for $5.3B26 April 2024
AI sparks increasing cyber concerns for execs amid growing adoption26 April 2024
More details on rural water system breach sought by legislators26 April 2024