CVE-2019-0980 – system.private.uri

Package

Manager: nuget
Name: system.private.uri
Vulnerable Version: >=4.3.0 <4.3.2

Severity

Level: High

CVSS v3.1: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

EPSS: 0.03215 pctl0.86542

Details

Denial of service in ASP.NET Core A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and .Net Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981.

Metadata

Created: 2022-05-24T16:45:53Z
Modified: 2022-07-07T23:26:16Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-xhfc-gr8f-ffwc/GHSA-xhfc-gr8f-ffwc.json
CWE IDs: []
Alternative ID: GHSA-xhfc-gr8f-ffwc
Finding: F002
Auto approve: 1