Microsoft ASP.NET Core 2.2

CPE Details

Microsoft ASP.NET Core 2.2
microsoft
asp.net_core
2.2
2019-05-07
16h31 +00:00
2023-10-15
14h48 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:microsoft:asp.net_core:2.2:*:*:*:*:*:*:*

Informations

Vendor

microsoft

Product

asp.net_core

Version

2.2

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2019-1302 2019-09-11 19h25 +00:00 An elevation of privilege vulnerability exists when a ASP.NET Core web application, created using vulnerable project templates, fails to properly sanitize web requests, aka 'ASP.NET Core Elevation Of Privilege Vulnerability'.
8.8
High
CVE-2019-1075 2019-07-15 16h56 +00:00 A spoofing vulnerability exists in ASP.NET Core that could lead to an open redirect, aka 'ASP.NET Core Spoofing Vulnerability'.
6.1
Medium
CVE-2019-0982 2019-05-16 16h24 +00:00 A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka 'ASP.NET Core Denial of Service Vulnerability'.
7.5
High
CVE-2019-0815 2019-04-09 18h16 +00:00 A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka 'ASP.NET Core Denial of Service Vulnerability'.
7.5
High
CVE-2019-0548 2019-01-08 20h00 +00:00 A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka "ASP.NET Core Denial of Service Vulnerability." This affects ASP.NET Core 2.2, ASP.NET Core 2.1. This CVE ID is unique from CVE-2019-0564.
7.5
High
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.