来自MSN

Microsoft issues urgent patch for critical ASP.NET Core flaw

The Data Protection API secures critical elements such as auth cookies, session state, and OIDC state across ASP.NET Core applications. Exploitation could let attackers assume privileged identities ...
CSOonline

Microsoft issues out-of-band patch for critical security flaw in update to ASP.NET Core

Patching is not enough: applications embedding the insecure library will need to be rebuilt, and affected tokens and cookies expired. Developers are advised to check their applications after Microsoft ...