Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
githubGitHub Advisory DatabaseGHSA-XCVR-QV8H-M7XW
HistoryMay 13, 2022 - 1:07 a.m.

.NET Core Denial of Service Vulnerability

2022-05-1301:07:06
GitHub Advisory Database
github.com
23
.net core
denial of service
vulnerability
specially crafted requests
powershell core

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.004

Percentile

75.1%

JSON

.NET Core 1.0, .NET Core 1.1, NET Core 2.0 and PowerShell Core 6.0.0 allow a denial of Service vulnerability due to how specially crafted requests are handled, aka “.NET Core Denial of Service Vulnerability”.

Affected configurations

Vulners
Node
microsoftnetcore.jitRange<1.0.12
OR
microsoftnetcore.jitRange1.1.01.1.7
OR
microsoftnetcore.jitRange2.0.02.0.6
VendorProductVersionCPE
microsoftnetcore.jit*cpe:2.3:a:microsoft:netcore.jit:*:*:*:*:*:*:*:*

Related

redhatcve 1
nvd 1
veracode 2
mscve 1
openvas 4
cve 1
osv 2
nessus 2
cvelist 1
symantec 1
redhat 1
prion 1
kaspersky 1
trendmicroblog 1
talosblog 1
redhatcve
redhatcve
CVE-2018-0875
2018-03-13 16:49:41
nvd
nvd
CVE-2018-0875
2018-03-14 17:29:00
veracode
veracode
Denial Of Service (DoS)
2018-06-29 05:20:44
Denial Of Service (DoS)
2019-01-15 09:23:07
mscve
mscve
.NET Core Denial of Service Vulnerability
2018-03-13 07:00:00
openvas
openvas
Microsoft PowerShell Core Denial of Service Vulnerability - Windows
2018-03-16 00:00:00
ASP.NET Core Denial of Service Vulnerability - Windows
2018-03-16 00:00:00
Microsoft PowerShell Core Denial of Service Vulnerability - Linux
2018-03-16 00:00:00
cve
cve
CVE-2018-0875
2018-03-14 17:29:00
osv
osv
.NET Core Denial of Service Vulnerability
2022-05-13 01:07:06
CVE-2018-0875
2018-03-14 17:29:00
nessus
nessus
RHEL 7 : .NET Core on Red Hat Enterprise Linux (RHSA-2018:0522)
2018-03-16 00:00:00
Security Update for .NET Core (March 2018)
2018-03-16 00:00:00
cvelist
cvelist
CVE-2018-0875
2018-03-14 17:00:00
symantec
symantec
Microsoft .NET CVE-2018-0875 Denial Of Service Vulnerability
2018-03-13 00:00:00
redhat
redhat
(RHSA-2018:0522) Low: .NET Core on Red Hat Enterprise Linux security update
2018-03-14 15:29:37
prion
prion
Denial of service
2018-03-14 17:29:00
kaspersky
kaspersky
KLA11210 Multiple vulnerabilities in Microsoft Developer Tools
2018-03-13 00:00:00
trendmicroblog
trendmicroblog
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of March 12, 2018
2018-03-16 15:14:43
talosblog
talosblog
Microsoft Patch Tuesday - March 2018
2018-03-13 14:38:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.004

Percentile

75.1%

JSON
Related for GHSA-XCVR-QV8H-M7XW
redhatcve1nvd1veracode2mscve1openvas4cve1osv2nessus2cvelist1symantec1redhat1prion1kaspersky1trendmicroblog1talosblog1