07-30-2024 12:43 PM
Risk insight reports for all of our machines that .net 6 is vulnerable. It shows that version 6.0.26 is a patched version.
It reports multiple CVE per machine like CVE-2024-0057
But our machines have 6.0.32 installed, so why does it still recommend to install 6.0.26
08-01-2024 05:40 PM - edited 08-01-2024 05:40 PM
Dear,
What is shown as affected product in your vulnerability? Is that actually .net?
This CVE can be caused by different .net version, but also by Powershell.
There is information about that in the KB article below.
Prioritize risk mitigation actions with Product Categorization (lansweeper.com)
If there is any doubt, you can also contact Lansweeper Support to help you to clear that out.
Experience Lansweeper with your own data. Sign up now for a 14-day free trial.
Try Now