A vulnerability categorized as problematic has been discovered in Microsoft .NET up to 8.0.21/9.0.10 . This affects an unknown function of the component ASP.NET Core Kestrel . The manipulation results in resource consumption. This vulnerability is cataloged as CVE-2026-25667 . The attack may be launched remotely. There is no exploit available. It is advisable to upgrade the affected component.