 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.815128 |
| Category: | Windows |
| Title: | .NET Core SDK Multiple DoS Vulnerabilities-01 (May 2019) |
| Summary: | ASP.NET Core SDK is prone to multiple DoS vulnerabilities. |
| Description: | Summary: ASP.NET Core SDK is prone to multiple DoS vulnerabilities. Vulnerability Insight: Multiple flaws exist due to - An error when .NET Core improperly process RegEx strings. - Multiple errors when .NET Core improperly handle web requests. Vulnerability Impact: Successful exploitation will allow an attacker to conduct DoS condition. Affected Software/OS: ASP.NET Core SDK 1.x prior to version 1.1.13 Solution: Upgrade to ASP.NET Core 1.1.13 (.NET Core SDK 1.1.13 includes .NET Core 1.0.16 Runtime) or 1.1.14 (.NET Core SDK 1.1.14 includes .NET Core 1.1.13 Runtime) or later. Please see the references for more information. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2019-0820 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0820 RedHat Security Advisories: RHSA-2019:1259 https://access.redhat.com/errata/RHSA-2019:1259 Common Vulnerability Exposure (CVE) ID: CVE-2019-0980 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980 Common Vulnerability Exposure (CVE) ID: CVE-2019-0981 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0981 |
| Copyright | Copyright (C) 2019 Greenbone Networks GmbH |
| This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |