Post #8850

@thehackernews

The Hacker News

Views8,080Post view count

PostedApr 2204/22/2026, 09:30 AM

Post content

⚠️ Microsoft patched CVE-2026-40372 (CVSS 9.1) in ASP .NET Core enabling SYSTEM-level escalation. A crypto flaw let attackers forge payloads and decrypt auth data in apps using vulnerable Data Protection on Linux/macOS. 🔗 Read → https://thehackernews.com/2026/04/microsoft-patches-critical-aspnet-core.html