WS-2016-7085
Published:May 14, 2026
Updated:May 14, 2026
All versions of the package System.Linq.Dynamic are vulnerable to Code Injection, due to an issue with restricting execution methods.
Affected Packages
xcomponent.studio.community (NUGET):
Affected version(s) >=5.0.8 <=9.9.0Fix Suggestion:
Update to version no_fixc21.core.app.service (NUGET):
Affected version(s) =1.0.0Fix Suggestion:
Update to version no_fixemframework (NUGET):
Affected version(s) >=1.0.0 <=1.0.0.19Fix Suggestion:
Update to version no_fixhelp (NUGET):
Affected version(s) =1.0.0Fix Suggestion:
Update to version no_fixqcommon.ui.devexpress (NUGET):
Affected version(s) >=1.0.6246.24193 <1.0.6246.38425Fix Suggestion:
Update to version 1.0.6246.38425mh.domainlayer.core (NUGET):
Affected version(s) =1.0.0 <1.0.1Fix Suggestion:
Update to version 1.0.1pacage (NUGET):
Affected version(s) =1.0.0Fix Suggestion:
Update to version no_fixcireson.platform.extension.openidadal (NUGET):
Affected version(s) >=0.1.0-rc0004 <=0.1.0-integration0001Fix Suggestion:
Update to version no_fixservicefull.spy.community (NUGET):
Affected version(s) >=7.0.0 <=10.25.0Fix Suggestion:
Update to version no_fixmh.application (NUGET):
Affected version(s) =1.0.0 <1.0.1Fix Suggestion:
Update to version 1.0.1cireson.assetmanagement.connectors.configmgr.core (NUGET):
Affected version(s) >=0.1.0-rc0048 <0.1.0-integration0001Fix Suggestion:
Update to version 0.1.0-integration0001decommserviceclientnuget (NUGET):
Affected version(s) =1.0.0.1Fix Suggestion:
Update to version no_fixxcomponent.spy.community (NUGET):
Affected version(s) >=5.0.8 <=9.9.0Fix Suggestion:
Update to version no_fixservicefull.studio.community (NUGET):
Affected version(s) >=7.0.0 <=10.25.0Fix Suggestion:
Update to version no_fixwgcommonlib (NUGET):
Affected version(s) >=1.0.0 <=1.0.4Fix Suggestion:
Update to version no_fixnet.appclusive.ps.client (NUGET):
Affected version(s) >=4.0.0 <=4.0.4Fix Suggestion:
Update to version no_fixmorestachio.netframework (NUGET):
Affected version(s) =2.3.2 <2.3.3Fix Suggestion:
Update to version 2.3.3cireson.platform.sdk (NUGET):
Affected version(s) >=1.0.70-rc0033 <=1.0.74-rc0008Fix Suggestion:
Update to version no_fixmh.infrastucture.data (NUGET):
Affected version(s) =1.0.0 <1.0.1Fix Suggestion:
Update to version 1.0.1cireson.platform.core.testing (NUGET):
Affected version(s) >=0.0.0 <=1.0.74-rc0008Fix Suggestion:
Update to version no_fixc21.core.app.domain (NUGET):
Affected version(s) =1.0.0Fix Suggestion:
Update to version no_fixcevi.adhoc (NUGET):
Affected version(s) =1.0.0 <1.0.0.1Fix Suggestion:
Update to version 1.0.0.1cireson.assetmanagement.core (NUGET):
Affected version(s) >=0.1.0-rc0048 <0.1.0-rc0126Fix Suggestion:
Update to version 0.1.0-rc0126glassdesigner.migrator (NUGET):
Affected version(s) =2.3.6Fix Suggestion:
Update to version no_fixxcomponent.community (NUGET):
Affected version(s) >=5.0.0-beta0021 <=5.0.7Fix Suggestion:
Update to version no_fixcrossbridge.dxservices (NUGET):
Affected version(s) =1.0.0 <1.0.1Fix Suggestion:
Update to version 1.0.1makesenswebaccessapi (NUGET):
Affected version(s) >=2020.9.16 <=2021.3.5Fix Suggestion:
Update to version no_fixdefontana.sesiones (NUGET):
Affected version(s) =4.5.0 <4.5.1Fix Suggestion:
Update to version 4.5.1system.linq.dynamic (NUGET):
Affected version(s) >=1.0.6 <=1.0.8Fix Suggestion:
Update to version no_fixwpftoolkitframework (NUGET):
Affected version(s) >=1.0.0.7 <1.0.7.4Fix Suggestion:
Update to version 1.0.7.4Related Resources (1)
Do you need more information?
Contact UsCVSS v4
Base Score:
9.3
Attack Vector
NETWORK
Attack Complexity
LOW
Attack Requirements
NONE
Privileges Required
NONE
User Interaction
NONE
Vulnerable System Confidentiality
HIGH
Vulnerable System Integrity
HIGH
Vulnerable System Availability
HIGH
Subsequent System Confidentiality
NONE
Subsequent System Integrity
NONE
Subsequent System Availability
NONE
CVSS v3
Base Score:
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH