CVE-2018-0875

Published: Mar 14, 2018Modified: Nov 21, 2024

7.5

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

.NET Core 1.0, .NET Core 1.1, NET Core 2.0 and PowerShell Core 6.0.0 allow a denial of Service vulnerability due to how specially crafted requests are handled, aka ".NET Core Denial of Service Vulnerability".

Affected (4)

Products: Microsoft: Asp.net Core, Powershell Core

Microsoft

2 products

Asp.net Core

Powershell Core

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Microsoft Asp.net Core	Version 1.0
Microsoft Asp.net Core	Version 1.1
Microsoft Asp.net Core	Version 2.0

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Microsoft Powershell Core	Version 6.0

References (8)

http://www.securityfocus.com/bid/103225

Source: secure@microsoft.com

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1040505

Source: secure@microsoft.com

Third Party AdvisoryVDB Entry

https://access.redhat.com/errata/RHSA-2018:0522

Source: secure@microsoft.com

Third Party Advisory

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0875

Source: secure@microsoft.com

PatchVendor Advisory

http://www.securityfocus.com/bid/103225

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1040505

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://access.redhat.com/errata/RHSA-2018:0522

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0875

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.