Back

Critical Runtime Fix for .NET SDK Addresses CVE-2026-40372

Severity: High (Score: 72.0)

Sources: Linuxsecurity

Summary

.NET SDK 10.0.107 and Runtime 10.0.7 updates were released to address CVE-2026-40372, a significant vulnerability affecting Fedora 42 and 43. The vulnerability, published on April 21, 2026, could potentially allow unauthorized access or execution of malicious code. Users of Fedora 42 and 43 are urged to upgrade to the latest versions to mitigate risks associated with this CVE. The updates were made available on May 10 and May 11, respectively. The updates can be installed using the 'dnf' package manager. This situation highlights the importance of timely patching in maintaining system security. The vulnerability affects cross-platform applications developed using .NET, which is widely used in various environments. Key Points: • CVE-2026-40372 affects .NET SDK and Runtime, posing a significant security risk. • Fedora 42 and 43 users must upgrade to .NET SDK 10.0.107 and Runtime 10.0.7 to mitigate this threat. • The vulnerability was published on April 21, 2026, and updates were released on May 10 and 11.

Key Entities

  • CVE-2026-40372 (cve)
  • Linux (platform)
  • MacOS (platform)
  • Windows (platform)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed