CVE-2020-0602
HIGHASP.NET Core - Denial of Service via Improper Web Request Handling
Title source: llmDescription
A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka 'ASP.NET Core Denial of Service Vulnerability'.
References (3)
Core 3
Core References
Patch, Vendor Advisory x_refsource_misc
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0602
Third Party Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2020:0130
Third Party Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2020:0134
Scores
CVSS v3
7.5
EPSS
0.0403
EPSS Percentile
88.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
Status
published
Products (16)
microsoft/asp.net_core
2.1
microsoft/asp.net_core
3.0
microsoft/asp.net_core
3.1
nuget/Microsoft.AspNetCore.All
2.1.0 - 2.1.15NuGet
nuget/Microsoft.AspNetCore.App
3.1.0 - 3.1.1NuGet
nuget/Microsoft.AspNetCore.App.Runtime.linux-arm
3.1.0 - 3.1.1NuGet
nuget/Microsoft.AspNetCore.App.Runtime.linux-arm64
3.1.0 - 3.1.1NuGet
nuget/Microsoft.AspNetCore.App.Runtime.linux-musl-x64
3.1.0 - 3.1.1NuGet
nuget/Microsoft.AspNetCore.App.Runtime.linux-x64
3.1.0 - 3.1.1NuGet
nuget/Microsoft.AspNetCore.App.Runtime.osx-x64
3.1.0 - 3.1.1NuGet
... and 6 more
Published
Jan 14, 2020
Tracked Since
Feb 18, 2026