Description
.NET Core and Visual Studio Denial of Service Vulnerability
References (7)
Core 7
Core References
Patch, Vendor Advisory
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38013
Mailing List, Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2CUL3Z7MEED7RFQZVGQL2MTKSFFZKAAY/
Mailing List, Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7HCV4TQGOTOFHO5ETRKGFKAGYV2YAUVE/
Mailing List, Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JA6F4CDKLI3MALV6UK3P2DR5AGCLTT7Y/
Mailing List, Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/K4K5YL7USOKIR3O2DUKBZMYPWXYPDKXG/
Mailing List, Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WL334CKOHA6BQQSYJW365HIWJ4IOE45M/
Vendor Advisory vendor-advisory
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38013
Scores
CVSS v3
7.5
EPSS
0.0307
EPSS Percentile
86.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-400
Status
published
Products (40)
fedoraproject/fedora
35
fedoraproject/fedora
36
fedoraproject/fedora
37
microsoft/.net
6.0.0
Microsoft/.NET 6.0
6.0.0 - 6.0.9
Microsoft/.NET Core 3.1
3.1 - 3.1.29
microsoft/.net_core
3.1
Microsoft/Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)
16.11.0 - 16.11.19
Microsoft/Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)
15.0.0 - 16.9.25
Microsoft/Microsoft Visual Studio 2022 version 17.0
17.0.0 - 17.0.14
... and 30 more
Published
Sep 13, 2022
Tracked Since
Feb 18, 2026