Advisory #65
Title.NET Runtime unsanitized NULL in environment variables
CVE IDNot assigned
VendorMicrosoft
Affected product.NET Runtime
Affected versions>= 6.0.10
Vulnerability typeCWE-158 (Improper Neutralization of Null Byte or NUL Character)
DescriptionDISPUTED: .NET Runtime has a vulnerability that allows malicious environment variable values to set a different environment variable by using NULL bytes. NOTE: the vendor's position is that environment variable values should only take trusted and sanitized inputs.
StatusNo fix available
RecommendationDo not pass untrusted inputs to "ProcessStartInfo.Environment".