CVE-2019-0815 – microsoft.aspnetcore

Package

Manager: nuget
Name: microsoft.aspnetcore
Vulnerable Version: =2.0.0

Severity

Level: Low

CVSS v3.1: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L

CVSS v4.0: CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

EPSS: N/A pctlN/A

Details

Affected versions of this package are vulnerable to Denial of Service (DoS). when ASP.NET Core improperly handles web requests. An attacker who successfully exploited this vulnerability remotely, without authentication and may cause denial of service against an ASP.NET Core web application.

Metadata

Created:
Modified:
Source: MANUAL
CWE IDs: ["CWE-200"]
Alternative ID: N/A
Finding: F308
Auto approve: 1