CVE-2017-11879 |
Open Redirect can cause Elevation Of Privilege |
11/14/2017 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11879 |
aspnet/Announcements#277 |
ASP.NET Core 2.0 |
Microsoft.AspNetCore.All |
2.0.0 |
2.0.3 |
CVE-2017-11879 |
Open Redirect can cause Elevation Of Privilege |
11/14/2017 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11879 |
aspnet/Announcements#277 |
ASP.NET Core 2.0 |
Microsoft.AspNetCore.Mvc.Core |
2.0.0 |
2.0.1 |
CVE-2017-11883 |
Denial Of Service Vulnerability |
11/14/2017 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11883 |
aspnet/Announcements#278 |
ASP.NET Core 1.0, 1.1 and 2.0. |
Microsoft.AspNetCore.Server.WebListener |
1.0.0, 1.0.1, 1.0.2, 1.0.3, 1.0.4, 1.0.5 |
1.0.6 |
CVE-2017-11883 |
Denial Of Service Vulnerability |
11/14/2017 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11883 |
aspnet/Announcements#278 |
ASP.NET Core 1.0, 1.1 and 2.0. |
Microsoft.AspNetCore.Server.WebListener |
1.1.0, 1.1.1, 1.1.2 ,1.1.3 |
1.1.4 |
CVE-2017-11883 |
Denial Of Service Vulnerability |
11/14/2017 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11883 |
aspnet/Announcements#278 |
ASP.NET Core 1.0, 1.1 and 2.0. |
Microsoft.Net.Http.Server |
1.0.0, 1.0.1, 1.0.2, 1.0.3, 1.0.4, 1.0.5 |
1.0.6 |
CVE-2017-11883 |
Denial Of Service Vulnerability |
11/14/2017 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11883 |
aspnet/Announcements#278 |
ASP.NET Core 1.0, 1.1 and 2.0. |
Microsoft.Net.Http.Server |
1.1.0, 1.1.1, 1.1.2 ,1.1.3 |
1.1.4 |
CVE-2017-11883 |
Denial Of Service Vulnerability |
11/14/2017 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11883 |
aspnet/Announcements#278 |
ASP.NET Core 1.0, 1.1 and 2.0. |
Microsoft.AspNetCore.Server.HttpSys |
2.0.0, 2.0.1 |
2.0.2 |
CVE-2017-8700 |
CORS bypass can enable Information Disclosure |
11/14/2017 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8700 |
aspnet/Announcements#279 |
ASP.NET Core 1.0 and 1.1 |
Microsoft.AspNetCore.Mvc.Core |
1.0.0, 1.0.1, 1.0.2, 1.0.3, 1.0.4, 1.0.5 |
1.0.6 |
CVE-2017-8700 |
CORS bypass can enable Information Disclosure |
11/14/2017 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8700 |
aspnet/Announcements#279 |
ASP.NET Core 1.0 and 1.1 |
Microsoft.AspNetCore.Mvc.Core |
1.1.0, 1.1.1, 1.1.2 ,1.1.3, 1.1.4 |
1.1.6 |
CVE-2017-8700 |
CORS bypass can enable Information Disclosure |
11/14/2017 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8700 |
aspnet/Announcements#279 |
ASP.NET Core 1.0 and 1.1 |
Microsoft.AspNetCore.Mvc.Cors |
1.0.0, 1.0.1, 1.0.2, 1.0.3, 1.0.4, 1.0.5 |
1.0.6 |
CVE-2017-8700 |
CORS bypass can enable Information Disclosure |
11/14/2017 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8700 |
aspnet/Announcements#279 |
ASP.NET Core 1.0 and 1.1 |
Microsoft.AspNetCore.Mvc.Cors |
1.1.0, 1.1.1, 1.1.2 ,1.1.3, 1.1.4 |
1.1.6 |
CVE-2018-0786 |
Security Feature Bypass in X509 Certificate Validation |
1/9/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0786 |
dotnet/announcements#51 |
WCF packages for .NET Core 1.0 and 1.1, and 2.0 |
System.ServiceModel.Primitives |
4.4.0 |
4.4.1 |
CVE-2018-0786 |
Security Feature Bypass in X509 Certificate Validation |
1/9/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0786 |
dotnet/announcements#51 |
WCF packages for .NET Core 1.0 and 1.1, and 2.0 |
System.ServiceModel.Http |
4.4.0 |
4.4.1 |
CVE-2018-0786 |
Security Feature Bypass in X509 Certificate Validation |
1/9/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0786 |
dotnet/announcements#51 |
WCF packages for .NET Core 1.0 and 1.1, and 2.0 |
System.ServiceModel.NetTcp |
4.4.0 |
4.4.1 |
CVE-2018-0786 |
Security Feature Bypass in X509 Certificate Validation |
1/9/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0786 |
dotnet/announcements#51 |
WCF packages for .NET Core 1.0 and 1.1, and 2.0 |
System.ServiceModel.Duplex |
4.4.0 |
4.4.1 |
CVE-2018-0786 |
Security Feature Bypass in X509 Certificate Validation |
1/9/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0786 |
dotnet/announcements#51 |
WCF packages for .NET Core 1.0 and 1.1, and 2.0 |
System.ServiceModel.Security |
4.4.0 |
4.4.1 |
CVE-2018-0786 |
Security Feature Bypass in X509 Certificate Validation |
1/9/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0786 |
dotnet/announcements#51 |
WCF packages for .NET Core 1.0 and 1.1, and 2.0 |
System.Private.ServiceModel |
4.4.0 |
4.4.1 |
CVE-2018-0786 |
Security Feature Bypass in X509 Certificate Validation |
1/9/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0786 |
dotnet/announcements#51 |
WCF packages for .NET Core 1.0 and 1.1, and 2.0 |
System.ServiceModel.Primitives |
4.3.0 |
4.3.1 |
CVE-2018-0786 |
Security Feature Bypass in X509 Certificate Validation |
1/9/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0786 |
dotnet/announcements#51 |
WCF packages for .NET Core 1.0 and 1.1, and 2.0 |
System.ServiceModel.Http |
4.3.0 |
4.3.1 |
CVE-2018-0786 |
Security Feature Bypass in X509 Certificate Validation |
1/9/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0786 |
dotnet/announcements#51 |
WCF packages for .NET Core 1.0 and 1.1, and 2.0 |
System.ServiceModel.NetTcp |
4.3.0 |
4.3.1 |
CVE-2018-0786 |
Security Feature Bypass in X509 Certificate Validation |
1/9/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0786 |
dotnet/announcements#51 |
WCF packages for .NET Core 1.0 and 1.1, and 2.0 |
System.ServiceModel.Duplex |
4.3.0 |
4.3.1 |
CVE-2018-0786 |
Security Feature Bypass in X509 Certificate Validation |
1/9/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0786 |
dotnet/announcements#51 |
WCF packages for .NET Core 1.0 and 1.1, and 2.0 |
System.ServiceModel.Security |
4.3.0 |
4.3.1 |
CVE-2018-0786 |
Security Feature Bypass in X509 Certificate Validation |
1/9/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0786 |
dotnet/announcements#51 |
WCF packages for .NET Core 1.0 and 1.1, and 2.0 |
System.Private.ServiceModel |
4.3.0 |
4.3.1 |
CVE-2018-0786 |
Security Feature Bypass in X509 Certificate Validation |
1/9/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0786 |
dotnet/announcements#51 |
WCF packages for .NET Core 1.0 and 1.1, and 2.0 |
System.ServiceModel.Primitives |
4.1.0 |
4.1.1 |
CVE-2018-0786 |
Security Feature Bypass in X509 Certificate Validation |
1/9/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0786 |
dotnet/announcements#51 |
WCF packages for .NET Core 1.0 and 1.1, and 2.0 |
System.ServiceModel.Http |
4.1.0 |
4.1.1 |
CVE-2018-0786 |
Security Feature Bypass in X509 Certificate Validation |
1/9/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0786 |
dotnet/announcements#51 |
WCF packages for .NET Core 1.0 and 1.1, and 2.0 |
System.ServiceModel.NetTcp |
4.1.0 |
4.1.1 |
CVE-2018-0786 |
Security Feature Bypass in X509 Certificate Validation |
1/9/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0786 |
dotnet/announcements#51 |
WCF packages for .NET Core 1.0 and 1.1, and 2.0 |
System.ServiceModel.Duplex |
4.1.0 |
4.1.1 |
CVE-2018-0786 |
Security Feature Bypass in X509 Certificate Validation |
1/9/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0786 |
dotnet/announcements#51 |
WCF packages for .NET Core 1.0 and 1.1, and 2.0 |
System.ServiceModel.Security |
4.1.0 |
4.1.1 |
CVE-2018-0786 |
Security Feature Bypass in X509 Certificate Validation |
1/9/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0786 |
dotnet/announcements#51 |
WCF packages for .NET Core 1.0 and 1.1, and 2.0 |
System.Private.ServiceModel |
4.1.0 |
4.1.1 |
CVE-2018-8269 |
Denial of Service Vulnerability in Odata |
9/10/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1075 |
aspnet/Announcements#385 |
ASP.NET Core |
Microsoft.AspNetCore.DataProtection.AzureStorage |
2.1.1 |
2.1.2 |
CVE-2018-8269 |
Denial of Service Vulnerability in Odata |
9/10/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1075 |
aspnet/Announcements#385 |
ASP.NET Core |
Microsoft.AspNetCore.DataProtection.AzureStorage |
2.2.0 |
2.2.1 |
CVE-2018-8269 |
Denial of Service Vulnerability in Odata |
9/10/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1075 |
aspnet/Announcements#385 |
ASP.NET Core |
Microsoft.AspNetCore.All |
[2.1.0, 2.1.12] |
2.1.13 |
CVE-2018-8269 |
Denial of Service Vulnerability in Odata |
9/10/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1075 |
aspnet/Announcements#385 |
ASP.NET Core |
Microsoft.AspNetCore.All |
[2.2.0, 2.2.6] |
2.2.7 |
CVE-2018-8356 |
.NET Core Security Feature Bypass Vulnerability |
7/10/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-CVE-2018-8356 |
dotnet/announcements#73 |
.NET Core |
System.Private.ServiceModel |
[4.0.0, 4.1.1] |
4.1.3 |
CVE-2018-8356 |
.NET Core Security Feature Bypass Vulnerability |
7/10/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-CVE-2018-8356 |
dotnet/announcements#73 |
.NET Core |
System.Private.ServiceModel |
[4.3.0, 4.3.1] |
4.3.3 |
CVE-2018-8356 |
.NET Core Security Feature Bypass Vulnerability |
7/10/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-CVE-2018-8356 |
dotnet/announcements#73 |
.NET Core |
System.Private.ServiceModel |
[4.4.0, 4.4.2] |
4.4.4 |
CVE-2018-8356 |
.NET Core Security Feature Bypass Vulnerability |
7/10/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-CVE-2018-8356 |
dotnet/announcements#73 |
.NET Core |
System.Private.ServiceModel |
[4.5.0, 4.5.1] |
4.5.3 |
CVE-2018-8356 |
.NET Core Security Feature Bypass Vulnerability |
7/10/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-CVE-2018-8356 |
dotnet/announcements#73 |
.NET Core |
System.ServiceModel.Duplex |
[4.0.0, 4.0.2] |
4.0.4 |
CVE-2018-8356 |
.NET Core Security Feature Bypass Vulnerability |
7/10/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-CVE-2018-8356 |
dotnet/announcements#73 |
.NET Core |
System.ServiceModel.Duplex |
[4.3.0, 4.3.1] |
4.3.3 |
CVE-2018-8356 |
.NET Core Security Feature Bypass Vulnerability |
7/10/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-CVE-2018-8356 |
dotnet/announcements#73 |
.NET Core |
System.ServiceModel.Duplex |
[4.4.0, 4.4.2] |
4.4.3 |
CVE-2018-8356 |
.NET Core Security Feature Bypass Vulnerability |
7/10/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-CVE-2018-8356 |
dotnet/announcements#73 |
.NET Core |
System.ServiceModel.Duplex |
[4.5.0, 4.5.1] |
4.5.3 |
CVE-2018-8356 |
.NET Core Security Feature Bypass Vulnerability |
7/10/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-CVE-2018-8356 |
dotnet/announcements#73 |
.NET Core |
System.ServiceModel.Http |
[4.0.0, 4.1.1] |
4.1.3 |
CVE-2018-8356 |
.NET Core Security Feature Bypass Vulnerability |
7/10/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-CVE-2018-8356 |
dotnet/announcements#73 |
.NET Core |
System.ServiceModel.Http |
[4.3.0, 4.3.1] |
4.3.3 |
CVE-2018-8356 |
.NET Core Security Feature Bypass Vulnerability |
7/10/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-CVE-2018-8356 |
dotnet/announcements#73 |
.NET Core |
System.ServiceModel.Http |
[4.4.0, 4.4.2] |
4.4.4 |
CVE-2018-8356 |
.NET Core Security Feature Bypass Vulnerability |
7/10/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-CVE-2018-8356 |
dotnet/announcements#73 |
.NET Core |
System.ServiceModel.Http |
[4.5.0, 4.5.1] |
4.5.3 |
CVE-2018-8356 |
.NET Core Security Feature Bypass Vulnerability |
7/10/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-CVE-2018-8356 |
dotnet/announcements#73 |
.NET Core |
System.ServiceModel.NetTcp |
[4.0.0, 4.1.1] |
4.1.3 |
CVE-2018-8356 |
.NET Core Security Feature Bypass Vulnerability |
7/10/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-CVE-2018-8356 |
dotnet/announcements#73 |
.NET Core |
System.ServiceModel.NetTcp |
[4.3.0, 4.3.1] |
4.3.3 |
CVE-2018-8356 |
.NET Core Security Feature Bypass Vulnerability |
7/10/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-CVE-2018-8356 |
dotnet/announcements#73 |
.NET Core |
System.ServiceModel.NetTcp |
[4.4.0, 4.4.2] |
4.4.4 |
CVE-2018-8356 |
.NET Core Security Feature Bypass Vulnerability |
7/10/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-CVE-2018-8356 |
dotnet/announcements#73 |
.NET Core |
System.ServiceModel.NetTcp |
[4.5.0, 4.5.1] |
4.5.3 |
CVE-2018-8356 |
.NET Core Security Feature Bypass Vulnerability |
7/10/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-CVE-2018-8356 |
dotnet/announcements#73 |
.NET Core |
System.ServiceModel.Primitives |
[4.0.0, 4.1.1] |
4.1.3 |
CVE-2018-8356 |
.NET Core Security Feature Bypass Vulnerability |
7/10/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-CVE-2018-8356 |
dotnet/announcements#73 |
.NET Core |
System.ServiceModel.Primitives |
[4.3.0, 4.3.1] |
4.3.3 |
CVE-2018-8356 |
.NET Core Security Feature Bypass Vulnerability |
7/10/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-CVE-2018-8356 |
dotnet/announcements#73 |
.NET Core |
System.ServiceModel.Primitives |
[4.4.0, 4.4.2] |
4.4.4 |
CVE-2018-8356 |
.NET Core Security Feature Bypass Vulnerability |
7/10/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-CVE-2018-8356 |
dotnet/announcements#73 |
.NET Core |
System.ServiceModel.Primitives |
[4.5.0, 4.5.1] |
4.5.3 |
CVE-2018-8356 |
.NET Core Security Feature Bypass Vulnerability |
7/10/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-CVE-2018-8356 |
dotnet/announcements#73 |
.NET Core |
System.ServiceModel.Security |
[4.0.0, 4.1.1] |
4.1.3 |
CVE-2018-8356 |
.NET Core Security Feature Bypass Vulnerability |
7/10/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-CVE-2018-8356 |
dotnet/announcements#73 |
.NET Core |
System.ServiceModel.Security |
[4.3.0, 4.3.1] |
4.3.3 |
CVE-2018-8356 |
.NET Core Security Feature Bypass Vulnerability |
7/10/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-CVE-2018-8356 |
dotnet/announcements#73 |
.NET Core |
System.ServiceModel.Security |
[4.4.0, 4.4.2] |
4.4.4 |
CVE-2018-8356 |
.NET Core Security Feature Bypass Vulnerability |
7/10/2018 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-CVE-2018-8356 |
dotnet/announcements#73 |
.NET Core |
System.ServiceModel.Security |
[4.5.0, 4.5.1] |
4.5.3 |
CVE-2018-8416 |
.NET Core Tampering Vulnerability |
1/8/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8416 |
dotnet/announcements#95 |
.NET Core 2.1 |
Microsoft.NETCore.App |
[2.1.0, 2.1.6] |
2.1.7 |
CVE-2019-0545 |
.NET Core Information Disclosure Vulnerability |
1/8/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0545 |
dotnet/announcements#94 |
.NET Core 2.1 and 2.2 |
Microsoft.NETCore.App |
[2.1.0, 2.1.6] |
2.1.7 |
CVE-2019-0546 |
.NET Core Information Disclosure Vulnerability |
1/9/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0546 |
dotnet/announcements#95 |
.NET Core 2.1 and 2.3 |
Microsoft.NETCore.App |
2.2.0 |
2.2.1 |
CVE-2019-0546 |
.NET Core Information Disclosure Vulnerability |
1/9/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0546 |
dotnet/announcements#95 |
.NET Core 2.1 and 2.3 |
System.Net.Http |
? |
? |
CVE-2019-0564 |
ASP.NET Core Denial of Service Vulnerability |
1/8/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0564 |
aspnet/Announcements#334 |
ASP.NET Core 2.1 and 2.2 |
Microsoft.AspNetCore.WebSockets |
2.2.0 |
2.2.1 |
CVE-2019-0564 |
ASP.NET Core Denial of Service Vulnerability |
1/8/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0564 |
aspnet/Announcements#334 |
ASP.NET Core 2.1 and 2.2 |
Microsoft.AspNetCore.WebSockets |
2.1.0, 2.1.1 |
2.1.7 |
CVE-2019-0564 |
ASP.NET Core Denial of Service Vulnerability |
1/8/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0564 |
aspnet/Announcements#334 |
ASP.NET Core 2.1 and 2.2 |
Microsoft.AspNetCore.Server.Kestrel.Core |
2.1.0, 2.1.1, 2.1.2, 2.1.3 |
2.1.7 |
CVE-2019-0564 |
ASP.NET Core Denial of Service Vulnerability |
1/8/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0564 |
aspnet/Announcements#334 |
ASP.NET Core 2.1 and 2.2 |
System.Net.WebSockets.WebSocketProtocol |
4.5.0, 4.5.1, 4.5.2 |
4.5.3 |
CVE-2019-0564 |
ASP.NET Core Denial of Service Vulnerability |
1/8/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0564 |
aspnet/Announcements#334 |
ASP.NET Core 2.1 and 2.2 |
Microsoft.NETCore.App |
2.2.0 |
2.2.1 |
CVE-2019-0564 |
ASP.NET Core Denial of Service Vulnerability |
1/8/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0564 |
aspnet/Announcements#334 |
ASP.NET Core 2.1 and 2.2 |
Microsoft.NETCore.App |
2.1.0, 2.1.1, 2.1.2, 2.1.3, 2.1.4, 2.1.5, 2.1.6 |
2.1.7 |
CVE-2019-0564 |
ASP.NET Core Denial of Service Vulnerability |
1/8/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0564 |
aspnet/Announcements#334 |
ASP.NET Core 2.1 and 2.2 |
Microsoft.AspNetCore.App |
2.2.0 |
2.2.1 |
CVE-2019-0564 |
ASP.NET Core Denial of Service Vulnerability |
1/8/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0564 |
aspnet/Announcements#334 |
ASP.NET Core 2.1 and 2.2 |
Microsoft.AspNetCore.App |
2.1.0, 2.1.1, 2.1.2, 2.1.3, 2.1.4, 2.1.5, 2.1.6 |
2.1.7 |
CVE-2019-0564 |
ASP.NET Core Denial of Service Vulnerability |
1/8/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0564 |
aspnet/Announcements#334 |
ASP.NET Core 2.1 and 2.2 |
Microsoft.AspNetCore.All |
2.2.0 |
2.2.1 |
CVE-2019-0564 |
ASP.NET Core Denial of Service Vulnerability |
1/8/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0564 |
aspnet/Announcements#334 |
ASP.NET Core 2.1 and 2.2 |
Microsoft.AspNetCore.All |
2.1.0, 2.1.1, 2.1.2, 2.1.3, 2.1.4, 2.1.5, 2.1.6 |
2.1.7 |
CVE-2019-0657 |
.NET Core Domain Spoofing Vulnerability |
2/12/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0657 |
dotnet/announcements#97 |
.NET Core 1.0, 1.1, 2.1 and 2.2 |
System.Private.Uri |
[4.3.0, 4.3.1] |
4.3.2 |
CVE-2019-0657 |
.NET Core Domain Spoofing Vulnerability |
2/12/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0657 |
dotnet/announcements#97 |
.NET Core 1.0, 1.1, 2.1 and 2.2 |
Microsoft.NETCore.App |
[2.1.0, 2.1.7] |
2.1.8 |
CVE-2019-0657 |
.NET Core Domain Spoofing Vulnerability |
2/12/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0657 |
dotnet/announcements#97 |
.NET Core 1.0, 1.1, 2.1 and 2.2 |
Microsoft.NETCore.App |
[2.2.0, 2.2.1] |
2.2.2 |
CVE-2019-0980 |
.NET Core Denial of Service Vulnerability |
5/14/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0980 |
dotnet/announcements#112 |
.NET Core and ASP.NET Core 1.0, 1.1, 2.1 and 2.2 |
System.Private.Uri |
[4.3.0, 4.3.1] |
4.3.2 |
CVE-2019-0981 |
.NET Core Denial of Service Vulnerability |
5/14/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0981 |
dotnet/announcements#113 |
.NET Core and ASP.NET Core 1.0, 1.1, 2.1 and 2.2 |
System.Private.Uri |
[4.3.0, 4.3.1] |
4.3.2 |
CVE-2019-0982 |
ASP.NET Core Denial of Service Vulnerability |
5/14/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0982 |
aspnet/Announcements#359 |
ASP.NET Core 2.1 and 2.2 |
Microsoft.AspNetCore.SignalR.Protocols.MessagePack |
[1.0.0, 1.0.4] |
1.0.11 |
CVE-2019-0982 |
ASP.NET Core Denial of Service Vulnerability |
5/14/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-0982 |
aspnet/Announcements#359 |
ASP.NET Core 2.1 and 2.2 |
Microsoft.AspNetCore.SignalR.Protocols.MessagePack |
1.1.0 |
1.1.5 |
CVE-2019-1075 |
ASP.NET Core Spoofing Vulnerability |
7/9/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1075 |
aspnet/Announcements#373 |
ASP.NET Core 2.1 and 2.2 |
Microsoft.AspNetCore.Server.HttpSys |
2.1.0, 2.1.1 |
2.1.12 |
CVE-2019-1075 |
ASP.NET Core Spoofing Vulnerability |
7/9/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1075 |
aspnet/Announcements#373 |
ASP.NET Core 2.1 and 2.2 |
Microsoft.AspNetCore.Server.HttpSys |
2.2.0 |
2.2.6 |
CVE-2019-1075 |
ASP.NET Core Spoofing Vulnerability |
7/9/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1075 |
aspnet/Announcements#373 |
ASP.NET Core 2.1 and 2.2 |
Microsoft.AspNetCore.Server.IIS |
2.2.0, 2.2.1, 2.2.2 |
2.2.6 |
CVE-2019-1075 |
ASP.NET Core Spoofing Vulnerability |
7/9/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1075 |
aspnet/Announcements#373 |
ASP.NET Core 2.1 and 2.2 |
Microsoft.AspNetCore.All |
[2.1.0, 2.1.11] |
2.1.12 |
CVE-2019-1075 |
ASP.NET Core Spoofing Vulnerability |
7/9/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1075 |
aspnet/Announcements#373 |
ASP.NET Core 2.1 and 2.2 |
Microsoft.AspNetCore.All |
[2.2.0, 2.2.5] |
2.2.6 |
CVE-2019-1075 |
ASP.NET Core Spoofing Vulnerability |
7/9/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1075 |
aspnet/Announcements#373 |
ASP.NET Core 2.1 and 2.2 |
Microsoft.AspNetCore.App |
[2.1.0,2.1.11] |
2.1.12 |
CVE-2019-1075 |
ASP.NET Core Spoofing Vulnerability |
7/9/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1075 |
aspnet/Announcements#373 |
ASP.NET Core 2.1 and 2.2 |
Microsoft.AspNetCore.App |
[2.2.0, 2.2.5] |
2.2.6 |
CVE-2019-1302 |
ASP.NET Core Elevation Of Privilege Vulnerability |
9/10/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1302 |
aspnet/Announcements#384 |
ASP.NET Core |
Microsoft.AspNetCore.SpaServices |
[2.1.0, 2.1.1] |
2.1.2 |
CVE-2019-1302 |
ASP.NET Core Elevation Of Privilege Vulnerability |
9/10/2019 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1302 |
aspnet/Announcements#384 |
ASP.NET Core |
Microsoft.AspNetCore.SpaServices |
2.2.0 |
2.2.1 |
CVE-2020-0602 |
ASP.NET Core Denial of Service Vulnerability |
1/14/2020 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0602 |
aspnet/Announcements#402 |
ASP.NET Core |
Microsoft.AspNetCore.Http.Connections |
[1.0.0, 1.0.4] |
1.0.15 |
CVE-2020-0602 |
ASP.NET Core Denial of Service Vulnerability |
1/14/2020 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0602 |
aspnet/Announcements#402 |
ASP.NET Core |
Microsoft.AspNetCore.App |
[2.1.0, 2.1.14] |
2.1.15 |
CVE-2020-0602 |
ASP.NET Core Denial of Service Vulnerability |
1/14/2020 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0602 |
aspnet/Announcements#402 |
ASP.NET Core |
Microsoft.AspNetCore.App |
3.0.0 |
3.0.1 |
CVE-2020-0602 |
ASP.NET Core Denial of Service Vulnerability |
1/14/2020 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0602 |
aspnet/Announcements#402 |
ASP.NET Core |
Microsoft.AspNetCore.App |
3.1.0 |
3.1.1 |
CVE-2020-0602 |
ASP.NET Core Denial of Service Vulnerability |
1/14/2020 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0602 |
aspnet/Announcements#402 |
ASP.NET Core |
Microsoft.AspNetCore.All |
[2.1.0, 2.1.14] |
2.1.15 |
CVE-2020-0603 |
ASP.NET Core Remote Code Execution Vulnerability |
1/14/2020 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0603 |
aspnet/Announcements#403 |
ASP.NET Core |
Microsoft.AspNetCore.Http.Connections |
[1.0.0, 1.0.4] |
1.0.15 |
CVE-2020-0603 |
ASP.NET Core Remote Code Execution Vulnerability |
1/14/2020 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0603 |
aspnet/Announcements#403 |
ASP.NET Core |
Microsoft.AspNetCore.App |
[2.1.0, 2.1.14] |
2.1.15 |
CVE-2020-0603 |
ASP.NET Core Remote Code Execution Vulnerability |
1/14/2020 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0603 |
aspnet/Announcements#403 |
ASP.NET Core |
Microsoft.AspNetCore.App |
3.0.0 |
3.0.1 |
CVE-2020-0603 |
ASP.NET Core Remote Code Execution Vulnerability |
1/14/2020 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0603 |
aspnet/Announcements#403 |
ASP.NET Core |
Microsoft.AspNetCore.App |
3.1.0 |
3.1.1 |
CVE-2020-0603 |
ASP.NET Core Remote Code Execution Vulnerability |
1/14/2020 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0603 |
aspnet/Announcements#403 |
ASP.NET Core |
Microsoft.AspNetCore.All |
[2.1.0, 2.1.14] |
2.1.15 |
CVE-2020-0606 |
.NET Core Remote Code Execution Vulnerability |
1/14/2020 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0606 |
dotnet/announcements#149 |
.NET Core |
Microsoft.WindowsDesktop.App.Ref |
3.0.1, 3.1.0 |
3.0.2, 3.1.1 |
CVE-2020-1045 |
Microsoft ASP.NET Core Security Feature Bypass Vulnerability |
9/8/2020 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1045 |
dotnet/announcements#165 |
ASP.NET Core |
Microsoft.AspNetCore.Http |
[2.1.0, 2.1.1] |
2.1.22 |
CVE-2020-1045 |
Microsoft ASP.NET Core Security Feature Bypass Vulnerability |
9/8/2020 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1045 |
dotnet/announcements#165 |
ASP.NET Core |
Microsoft.AspNetCore.App.Ref |
[3.1.0, 3.1.3] |
3.1.8 |
CVE-2020-1045 |
Microsoft ASP.NET Core Security Feature Bypass Vulnerability |
9/8/2020 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1045 |
dotnet/announcements#165 |
ASP.NET Core |
Microsoft.AspNetCore.Owin |
[1.0.0, 3.1.7] |
3.1.8 |