CVE-2024-51417

CVE-2024-51417

CVSS 6.4 MEDIUMEPSS 0.3%CWE-863

An issue in System.Linq.Dynamic.Core before 1.6.0 allows remote access to properties on reflection types and static properties/fields.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://dynamic-linq.net/expression-language#operators https://github.com/zzzprojects/System.Linq.Dynamic.Core/issues/867 https://zzzprojects.com/