This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(137.6, 72%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERF%3C/text%3E%3C/svg%3E)
Hi All
i have the below vulnerability on my servers. if i download the .NET 5.0 runtime from the website https://dotnet.microsoft.com/download will this fix it. please guide me.
The Microsoft .NET Core installation on the remote host is version 2.1.x prior to 2.1.26, 3.1.x prior to 3.1.13, or 5.x prior to 5.0.4. It is, therefore, affected by a remote code execution vulnerability.
An unauthenticated, remote attacker can exploit this to bypass authentication and execute arbitrary commands.
.NET: Microsoft Technologies based on the .NET software framework. Runtime: An environment required to run apps that aren't compiled to machine language.
Microsoft Technologies based on the .NET software framework. Miscellaneous topics that do not fit into specific categories.
Answer accepted by question author
Hello RisingFlight,
Been there, and I found the next MS article to contain all I needed to patch my servers.
https://devblogs.microsoft.com/dotnet/net-march-2021/
Hope it helps you too!
No, it won't. .NET 5 runtime installer only updates .NET 5 itself, not other older versions.
But if you utilize Microsoft Update per Microsoft, then you get all runtime versions up-to-date.
lets say if i have version 2 or version 3, if i update to .Net 5.0 then will it work? i.e .Net 2 or .Net 3 will it get updated to .Net 5.0
If you want to follow up on a certain answer, you should leave a comment there, instead of posting another answer. No. .NET Core 2 or 3 won't automatically upgrade to .NET 5. There isn't such a thing.