Microsoft Patches Critical ASP.NET Core CVE-2026-40372 Privilege Escalation Bug

3 hours ago [email protected] (The Hacker News)
Microsoft Patches Critical ASP.NET Core CVE-2026-40372 Privilege Escalation Bug


Microsoft has released out-of-band updates to address a security vulnerability in ASP.NET Core that could allow an attacker to escalate privileges.
The vulnerability, tracked as CVE-2026-40372, carries a CVSS score of 9.1 out of 10.0. It’s rated Important in severity. An anonymous researcher has been credited with discovering and reporting the flaw.
“Improper verification of cryptographic

The post “Microsoft Patches Critical ASP.NET Core CVE-2026-40372 Privilege Escalation Bug” appeared first on The Hacker News

Source:The Hacker News – [email protected] (The Hacker News)

Tags: , , , , ,

More Stories

Cohere AI Terrarium Sandbox Flaw Enables Root Code Execution, Container Escape

5 hours ago [email protected] (The Hacker News)

22 BRIDGE:BREAK Flaws Expose 20,000 Lantronix and Silex Serial-to-IP Converters

21 hours ago [email protected] (The Hacker News)

No Exploit Needed: How Attackers Walk Through the Front Door via Identity-Based Attacks

1 day ago [email protected] (The Hacker News)

NGate Campaign Targets Brazil, Trojanizes HandyPay to Steal NFC Data and PINs

1 day ago [email protected] (The Hacker News)

Google Patches Antigravity IDE Flaw Enabling Prompt Injection Code Execution

1 day ago [email protected] (The Hacker News)

CISA Adds 8 Exploited Flaws to KEV, Sets April-May 2026 Federal Deadlines

1 day ago [email protected] (The Hacker News)