Skip to content

[GHSA-w3x6-4m5h-cxqf] Microsoft Security Advisory CVE-2026-26171 – .NET Denial of Service Vulnerability #7398

Merged
advisory-database[bot] merged 1 commit into
DylanW01/advisory-improvement-7398from
DylanW01-GHSA-w3x6-4m5h-cxqf
Apr 15, 2026
Merged

[GHSA-w3x6-4m5h-cxqf] Microsoft Security Advisory CVE-2026-26171 – .NET Denial of Service Vulnerability #7398
advisory-database[bot] merged 1 commit into
DylanW01/advisory-improvement-7398from
DylanW01-GHSA-w3x6-4m5h-cxqf

Conversation

@DylanW01
Copy link
Copy Markdown

@DylanW01 DylanW01 commented Apr 15, 2026

Updates

  • CVSS v3
  • Severity

Comments
Updated to the valid CVSS 3.1 format CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H which correctly evaluates to High (7.5) to match the description.

Copilot AI review requested due to automatic review settings April 15, 2026 15:57
@github-actions github-actions Bot changed the base branch from main to DylanW01/advisory-improvement-7398 April 15, 2026 15:59
Copilot AI reviewed Apr 15, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Note

Copilot was unable to run its full agentic suite in this review.

Updates the advisory metadata for CVE-2026-26171 to reflect the correct CVSS v3.1 vector/scoring and corresponding severity.

Changes:

  • Update CVSS v3.1 vector from A:N to A:H (High, 7.5)
  • Update advisory severity from LOW to HIGH
  • Bump modified timestamp

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Comment thread advisories/github-reviewed/2026/04/GHSA-w3x6-4m5h-cxqf/GHSA-w3x6-4m5h-cxqf.json
"schema_version": "1.4.0",
"id": "GHSA-w3x6-4m5h-cxqf",
"modified": "2026-04-14T23:31:08Z",
"modified": "2026-04-14T23:31:11Z",
Copy link

Copilot AI Apr 15, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

modified is now later than github_reviewed_at while github_reviewed remains true. If github_reviewed_at is intended to represent the timestamp of the last review of the current content, it should be updated alongside this change (or the review flag/time should be handled consistently) to avoid downstream consumers treating the updated content as being reviewed at an earlier time.

Suggested change
"modified": "2026-04-14T23:31:11Z",
"modified": "2026-04-14T23:31:08Z",

Copilot uses AI. Check for mistakes.
Comment thread advisories/github-reviewed/2026/04/GHSA-w3x6-4m5h-cxqf/GHSA-w3x6-4m5h-cxqf.json
"severity": "LOW",
"severity": "HIGH",
"github_reviewed": true,
"github_reviewed_at": "2026-04-14T23:31:08Z",
Copy link

Copilot AI Apr 15, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

modified is now later than github_reviewed_at while github_reviewed remains true. If github_reviewed_at is intended to represent the timestamp of the last review of the current content, it should be updated alongside this change (or the review flag/time should be handled consistently) to avoid downstream consumers treating the updated content as being reviewed at an earlier time.

Suggested change
"github_reviewed_at": "2026-04-14T23:31:08Z",
"github_reviewed_at": "2026-04-14T23:31:11Z",

Copilot uses AI. Check for mistakes.
@advisory-database advisory-database Bot merged commit 4d70ebb into DylanW01/advisory-improvement-7398 Apr 15, 2026
7 of 8 checks passed
@advisory-database
Copy link
Copy Markdown
Contributor

advisory-database Bot commented Apr 15, 2026

Hi @DylanW01! Thank you so much for contributing to the GitHub Advisory Database. This database is free, open, and accessible to all, and it's people like you who make it great. Thanks for choosing to help others. We hope you send in more contributions in the future!

@advisory-database advisory-database Bot deleted the DylanW01-GHSA-w3x6-4m5h-cxqf branch April 15, 2026 16:10
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@DylanW01