CVE-2020-1108
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability: 3.9 / Impact: 3.6
Source: NVD
Description
A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests, aka '.NET Core & .NET Framework Denial of Service Vulnerability'.
Affected (25)
Configuration A
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Version 2.0 sp2 |
Configuration D
| Running on/with | Platform Versions |
|---|---|
Microsoft Windows Server 2012 | All versions |
Configuration E
| Running on/with | Platform Versions |
|---|---|
Microsoft Windows 10 | Version 1607 |
Configuration F
| Running on/with | Platform Versions |
|---|---|
Microsoft Windows Server 2016 | All versions |
Configuration G
| Running on/with | Platform Versions |
|---|---|
Microsoft Windows 10 | All versions |
Configuration H
| Running on/with | Platform Versions |
|---|---|
Microsoft Windows 10 | Version 1709 |
Configuration I
| Running on/with | Platform Versions |
|---|---|
Microsoft Windows 10 | Version 1709 |
Configuration J
| Running on/with | Platform Versions |
|---|---|
Microsoft Windows 10 | Version 1803 |
Configuration K
| Running on/with | Platform Versions |
|---|---|
Microsoft Windows 10 | Version 1809 |
Microsoft Windows Server 2019 | All versions |
Configuration L
| Running on/with | Platform Versions |
|---|---|
Microsoft Windows 10 | Version 1909 |
Configuration M
| Running on/with | Platform Versions |
|---|---|
Microsoft Windows 10 | Version 1903 |
Configuration N
| Running on/with | Platform Versions |
|---|---|
Microsoft Windows 10 | Version 1903 |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| Version 3.5.1 |
Configuration P
| Running on/with | Platform Versions |
|---|---|
Microsoft Windows 8.1 | All versions |
Configuration Q
| Running on/with | Platform Versions |
|---|---|
Microsoft Windows 8.1 | All versions |
Configuration R
| Running on/with | Platform Versions |
|---|---|
Microsoft Windows Server 2008 | All versions |
Microsoft Windows Server 2012 | Version r2 |
Configuration S
| Running on/with | Platform Versions |
|---|---|
Microsoft Windows Server 2008 | All versions |
Configuration T
| Vulnerable Software | Affected Versions |
|---|---|
| Version 3.5 |
| Running on/with | Platform Versions |
|---|---|
Microsoft Windows 10 | Version 1803 |
Configuration U
| Running on/with | Platform Versions |
|---|---|
Microsoft Windows 7 | All versions |
Configuration V
| Vulnerable Software | Affected Versions |
|---|---|
| Version 4.5.2 |
| Running on/with | Platform Versions |
|---|---|
Microsoft Windows Rt 8.1 | All versions |
Configuration W
| Vulnerable Software | Affected Versions |
|---|---|
| Version 2.1 | |
| Version 15.9 | |
| Version 16.0 |
Configuration X
| Vulnerable Software | Affected Versions |
|---|---|
| Version 7.0 | |
| Version 6.2 |
References (2)
Source: secure@microsoft.com
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Timeline
No history available yet.