Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Security Advisories: GSA_kwCzR0hTQS14aGZjLWdyOGYtZmZ3Y84AAguU
Denial of service in ASP.NET Core
A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and .Net Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981.
Permalink: https://github.com/advisories/GHSA-xhfc-gr8f-ffwcJSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS14aGZjLWdyOGYtZmZ3Y84AAguU
Source: GitHub Advisory Database
Origin: Unspecified
Severity: High
Classification: General
Published: over 2 years ago
Updated: almost 2 years ago
CVSS Score: 7.5
CVSS vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Identifiers: GHSA-xhfc-gr8f-ffwc, CVE-2019-0980
References:
- https://nvd.nist.gov/vuln/detail/CVE-2019-0980
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980
- https://github.com/dotnet/announcements/issues/112
- https://github.com/github/advisory-database/issues/302
- https://github.com/advisories/GHSA-xhfc-gr8f-ffwc
Blast Radius: 1.0
Affected Packages
nuget:System.Private.Uri
Dependent packages: 42Dependent repositories: 0
Downloads: 445,437,143 total
Affected Version Ranges: >= 4.3.0, < 4.3.2
Fixed in: 4.3.2
All affected versions: 4.3.0, 4.3.1
All unaffected versions: 4.0.0, 4.0.1, 4.0.3, 4.0.4, 4.0.5, 4.3.2