CVE-2019-0564 – microsoft.aspnetcore.all

Package

Manager: nuget
Name: microsoft.aspnetcore.all
Vulnerable Version: =2.2.0 || >=2.2.0 <2.2.1 || >=2.1.0 <2.1.7

Severity

Level: High

CVSS v3.1: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

EPSS: 0.04581 pctl0.88787

Details

Denial of service in ASP.NET Core A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka "ASP.NET Core Denial of Service Vulnerability." This affects ASP.NET Core 2.1. This CVE ID is unique from CVE-2019-0548.

Metadata

Created: 2022-05-14T01:41:32Z
Modified: 2022-07-08T19:32:43Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-6px8-22w5-w334/GHSA-6px8-22w5-w334.json
CWE IDs: []
Alternative ID: GHSA-6px8-22w5-w334
Finding: F002
Auto approve: 1