CVE-2020-1161
HIGHASP.NET Core - Denial of Service via Improper Web Request Handling
Title source: llmDescription
A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka 'ASP.NET Core Denial of Service Vulnerability'.
References (1)
Core 1
Core References
Patch, Vendor Advisory x_refsource_misc
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1161
Scores
CVSS v3
7.5
EPSS
0.0413
EPSS Percentile
88.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
Status
published
Products (12)
microsoft/asp.net_core
3.1
microsoft/visual_studio_2017
15.1 - 15.9
microsoft/visual_studio_2019
16.0 - 16.5
nuget/Microsoft.AspNetCore.App.Runtime.linux-arm
3.1.0 - 3.1.4NuGet
nuget/Microsoft.AspNetCore.App.Runtime.linux-arm64
3.1.0 - 3.1.4NuGet
nuget/Microsoft.AspNetCore.App.Runtime.linux-musl-arm64
3.1.0 - 3.1.4NuGet
nuget/Microsoft.AspNetCore.App.Runtime.linux-musl-x64
3.1.0 - 3.1.4NuGet
nuget/Microsoft.AspNetCore.App.Runtime.linux-x64
3.1.0 - 3.1.4NuGet
nuget/Microsoft.AspNetCore.App.Runtime.osx-x64
3.1.0 - 3.1.4NuGet
nuget/Microsoft.AspNetCore.App.Runtime.win-arm
3.1.0 - 3.1.4NuGet
... and 2 more
Published
May 21, 2020
Tracked Since
Feb 18, 2026