Lucene search
Veracode Vulnerability DatabaseVERACODE:45475HistoryFeb 14, 2024 - 6:52 a.m.
Denial Of Service (DOS)
2024-02-1406:52:57
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
16
denial of service
asp.net core
signalr
vulnerability
server overwhelmed
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
6.5
Confidence
High
EPSS
0.001
Percentile
27.5%
ASP.NET Core is vulnerable to a Denial of Service (DoS). The vulnerability is due to improper handling of certain SignalR requests which results in the server being overwhelmed unresponsive, resulting in Denial of Service (DoS).
Related
redos
redos
ROS-20240426-02
2024-04-26 00:00:00
openvas
openvas
.NET Core DoS Vulnerability (Feb 2024) - Windows
2024-02-14 00:00:00
Ubuntu: Security Advisory (USN-6634-1)
2024-02-14 00:00:00
nvd
nvd
CVE-2024-21386
2024-02-13 18:15:56
github
github
prion
prion
Denial of service
2024-02-13 18:15:00
cvelist
cvelist
CVE-2024-21386 .NET Denial of Service Vulnerability
2024-02-13 18:02:20
vulnrichment
vulnrichment
CVE-2024-21386 .NET Denial of Service Vulnerability
2024-02-13 18:02:20
nessus
nessus
Security Update for Microsoft ASP.NET Core (February 2024) (CVE-2024-21386)
2024-02-14 00:00:00
RHEL 8 : dotnet6.0 (RHSA-2024:0808)
2024-02-13 00:00:00
RHEL 9 : dotnet6.0 (RHSA-2024:0807)
2024-02-13 00:00:00
alpinelinux
alpinelinux
CVE-2024-21386
2024-02-13 18:15:56
mscve
mscve
.NET Denial of Service Vulnerability
2024-02-13 08:00:00
osv
osv
BIT-aspnet-core-2024-21386
2024-03-06 10:50:49
CVE-2024-21386
2024-02-13 18:15:56
cve
cve
CVE-2024-21386
2024-02-13 18:15:56
ubuntucve
ubuntucve
CVE-2024-21386
2024-02-13 00:00:00
redhatcve
redhatcve
CVE-2024-21386
2024-02-13 18:30:23
redhat
redhat
(RHSA-2024:0827) Important: .NET 8.0 security update
2024-02-15 07:08:25
(RHSA-2024:0808) Important: dotnet6.0 security update
2024-02-13 18:16:37
(RHSA-2024:0807) Important: dotnet6.0 security update
2024-02-13 18:16:30
almalinux
almalinux
Important: .NET 8.0 security update
2024-02-15 00:00:00
Important: dotnet7.0 security update
2024-02-13 00:00:00
Important: dotnet6.0 security update
2024-02-13 00:00:00
rocky
rocky
.NET 8.0 security update
2024-03-12 15:41:47
dotnet7.0 security update
2024-03-12 15:42:26
oraclelinux
oraclelinux
dotnet6.0 security update
2024-02-15 00:00:00
.NET 8.0 security update
2024-02-16 00:00:00
dotnet7.0 security update
2024-02-15 00:00:00
ubuntu
ubuntu
.NET vulnerabilities
2024-02-13 00:00:00
kaspersky
kaspersky
KLA63960 Multiple vulnerabilities in Microsoft Developer Tools
2024-02-13 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - February 2024
2024-02-13 21:26:21
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
6.5
Confidence
High
EPSS
0.001
Percentile
27.5%
Related for VERACODE:45475