Bleeping Computer

Microsoft releases emergency patches for critical ASP.NET flaw

Microsoft has released out-of-band (OOB) security updates to patch a critical ASP.NET Core privilege escalation vulnerability. The security flaw (tracked as CVE-2026-40372) was found in the ASP.NET ...
The Hacker News

Microsoft Patches Critical ASP.NET Core CVE-2026-40372 Privilege Escalation Bug

Microsoft has released out-of-band updates to address a security vulnerability in ASP.NET Core that could allow an attacker to escalate privileges. The vulnerability, tracked as CVE-2026-40372, ...
CSOonline

Microsoft issues out-of-band patch for critical security flaw in update to ASP.NET Core

Patching is not enough: applications embedding the insecure library will need to be rebuilt, and affected tokens and cookies expired. Developers are advised to check their applications after Microsoft ...
techcircle

Mastering Microservices with ASP.NET Core: Design Patterns, APIs, and Real-World ...

In the past, the software was a monolith that was built. There is a single gigantic entity of code that is all tightly coupled and cannot be scaled without making your infrastructure team restless.
InfoQ

ASP.NET Core in .NET 11 Preview 1 Brings New Blazor Components, Improved Navigation, and ...

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Birgitta Böckeler, Distinguished Engineer at ...
InfoQ

ASP.NET Core in .NET 10: Major Updates across Blazor, APIs, and OpenAPI

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Birgitta Böckeler, Distinguished Engineer at ...
Bleeping Computer

Microsoft fixes highest-severity ASP.NET Core flaw ever

Earlier this week, Microsoft patched a vulnerability that was flagged with the "highest ever" severity rating received by an ASP.NET Core security flaw. This HTTP request smuggling bug (CVE-2025-55315 ...
SecurityWeek

‘Highest Ever’ Severity Score Assigned by Microsoft to ASP.NET Core Vulnerability

CVE-2025-55315 is an HTTP request smuggling bug leading to information leaks, file content tampering, and server crashes. Microsoft’s October Patch Tuesday updates addressed a critical-severity ...
Visual Studio Magazine

ASP.NET Core and Blazor Dominate 'Relatively Small' .NET 10 Preview 6

ASP.NET Core and Blazor received the lion's share of updates in .NET 10 Preview 6, with improvements ranging from JavaScript bundler support and server state persistence to enhanced diagnostics and ...
Visual Studio Magazine

ASP.NET Core, .NET MAUI Updated as .NET 9 Nears

The web-dev ASP.NET Core framework and Xamarin.Forms' successor .NET MAUI received the lion's share of dev attention in the seventh preview of .NET 9 as Microsoft preps for a November launch at .NET ...
InfoWorld

6 security best practices for ASP.NET Core

Learn the best practices and built-in safeguards for preventing attacks and protecting sensitive data in your ASP.NET Core web applications. Today’s web applications are vulnerable to a variety of ...
InfoWorld

How to use the new minimal API features in ASP.NET Core 8

Parameter binding from forms, antiforgery tokens, and Native AOT are now supported in ASP.NET Core. Here’s how to take advantage of them. ASP.NET Core offers a simplified hosting model, called minimal ...