Tag
1 post tagged #cve-2026-40372.
Field Note · May 1, 2026 · PatchDay Alert Editorial Desk
The ASP.NET Core DataProtection fix stops new forged payloads. It does not clean up tokens your app may have issued while the vulnerable code was live.
Get the digest
Free. Weekday mornings. Plain English CVE triage.
Check your inbox to confirm.