First published: Tue Dec 18 2018(Updated: )
A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka "ASP.NET Core Denial of Service Vulnerability." This affects ASP.NET Core 2.2, ASP.NET Core 2.1. This CVE ID is unique from CVE-2019-0564.
Credit: secure@microsoft.com
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft ASP.NET Core | =2.1 | |
Microsoft ASP.NET Core | =2.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this issue is CVE-2019-0548.
The severity of CVE-2019-0548 is high with a CVSS score of 7.5.
ASP.NET Core versions 2.1 and 2.2 are affected by CVE-2019-0548.
CVE-2019-0548 allows an attacker to cause a denial of service by exploiting the way ASP.NET Core handles web requests.
Yes, you can find more information about CVE-2019-0548 in the references provided: [Link 1](https://access.redhat.com/errata/RHSA-2019:0040), [Link 2](https://github.com/aspnet/Announcements/issues/335), [Link 3](https://github.com/aspnet/AspNetCore/issues/6488).