CVE-2023-36899
Description
ASP.NET Elevation of Privilege Vulnerability
Microsoft Corporation
Severity: HIGH
CVE ID: CVE-2023-36899
CVSS Score: 8.8
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Proof Of Concept
d0rb
CVE-2023-36899 PoC
Refrence: GitHub
midisec
CVE-2023-36899漏洞的复现环境和工具,针对ASP.NET框架中的无cookie会话身份验证绕过。
Refrence: GitHub