## BlazorAdmin 1.0.0 Found Carrying CVE-2023-36558 Vulnerability in Microsoft.AspNetCore.Components 7.0.10
A WhiteSource security scan detected a known vulnerability in the BlazorAdmin 1.0.0 package, specifically tied to CVE-2023-36558 affecting Microsoft.AspNetCore.Components version 7.0.10. The vulnerable library path traces to the NuGet package directory, and the flaw was identified in a specific HEAD commit of the deltaHotelNine-Security-Demos/_demo_eShop_SCA repository. With a CVSS score of 6.2, the vulnerability carries medium-high severity and remained present in the codebase before the issue was auto-closed.

The detection surfaced through automated scanning infrastructure that flags known CVEs in project dependencies. CVE-2023-36558 is a documented flaw within the ASP.NET Core components ecosystem, a framework widely used for building interactive web UIs in .NET applications. BlazorAdmin, a popular administrative template built on this framework, thus carries a known security gap that could expose applications depending on the affected components to exploitation if left unpatched.

The issue was marked as auto-closed, suggesting the finding was either addressed through a dependency update or formally resolved within the project's workflow. However, the presence of a documented fix and the remediation pathway indicate that organizations using BlazorAdmin 1.0.0 should verify their component versions and ensure they are running patched equivalents to eliminate exposure to this vulnerability.
---
- **Source**: GitHub Issues
- **Sector**: The Lab
- **Tags**: CVE-2023-36558, Microsoft.AspNetCore.Components, vulnerability, Blazor, .NET
- **Credibility**: unverified
- **Published**: 2026-05-15 13:48:31
- **ID**: 83479
- **URL**: https://whisperx.ai/en/intel/83479