CVE-2019-0980
First published: Thu May 02 2019(Updated: )
A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and .Net Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981.
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft .NET Core SDK | =1.0 | |
| Microsoft .NET Core SDK | =1.1 | |
| Microsoft .NET Core SDK | =2.1 | |
| Microsoft .NET Core SDK | =2.2 | |
| Microsoft .NET Framework 4 | =2.0-sp2 | |
| Microsoft .NET Framework 4 | =3.0-sp2 | |
| Microsoft Windows Server | =sp2 | |
| Microsoft .NET Framework 4 | =3.5 | |
| Microsoft Windows 10 | ||
| Microsoft Windows 10 | =1607 | |
| Microsoft Windows 10 | =1703 | |
| Microsoft Windows 10 | =1709 | |
| Microsoft Windows 10 | =1803 | |
| Microsoft Windows 10 | =1809 | |
| Microsoft Windows 10 | =1903 | |
| Microsoft Windows 8.1 | ||
| Microsoft Windows Server | ||
| Microsoft Windows Server | =r2 | |
| Microsoft Windows Server 2016 | ||
| Microsoft Windows Server 2016 | =1803 | |
| Microsoft Windows Server 2016 | =1903 | |
| Microsoft Windows Server 2019 | ||
| Microsoft .NET Framework 4 | =3.5.1 | |
| Microsoft Windows 7 | =sp1 | |
| Microsoft Windows Server | =r2-sp1 | |
| Microsoft Windows Server | =r2-sp1 | |
| Microsoft .NET Framework 4 | =4.5.2 | |
| Microsoft Windows RT | ||
| Microsoft .NET Framework 4 | =4.6 | |
| Microsoft .NET Framework 4 | =4.6.2 | |
| Microsoft .NET Framework 4 | =4.7 | |
| Microsoft .NET Framework 4 | =4.7.1 | |
| Microsoft .NET Framework 4 | =4.7.2 | |
| Microsoft .NET Framework 4 | =4.6.1 | |
| Microsoft .NET Framework 4 | =4.8 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0980
- https://access.redhat.com/errata/RHSA-2019:1236
- https://access.redhat.com/errata/RHSA-2019:1259
- https://bugzilla.redhat.com/show_bug.cgi?id=1705502
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0980
Frequently Asked Questions
What is CVE-2019-0980?
CVE-2019-0980 is a denial of service vulnerability in .NET Framework and .NET Core.
How does CVE-2019-0980 affect Microsoft .NET Core?
CVE-2019-0980 affects Microsoft .NET Core versions 1.0, 1.1, 2.1, and 2.2.
How does CVE-2019-0980 affect Microsoft .NET Framework?
CVE-2019-0980 affects Microsoft .NET Framework versions 2.0-sp2, 3.0-sp2, and 3.5.
What is the severity of CVE-2019-0980?
The severity of CVE-2019-0980 is high, with a CVSS score of 7.5.
How can I fix CVE-2019-0980?
To fix CVE-2019-0980, it is recommended to apply the necessary security updates provided by Microsoft.
- agent/type
- agent/first-publish-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2019-0980
- agent/remedy
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/microsoft
- canonical/microsoft .net core sdk
- version/microsoft .net core sdk/1.0
- version/microsoft .net core sdk/1.1
- version/microsoft .net core sdk/2.1
- version/microsoft .net core sdk/2.2
- canonical/microsoft .net framework 4
- version/microsoft .net framework 4/2.0-sp2
- version/microsoft .net framework 4/3.0-sp2
- canonical/microsoft windows server
- version/microsoft windows server/sp2
- version/microsoft .net framework 4/3.5
- canonical/microsoft windows 10
- version/microsoft windows 10/1607
- version/microsoft windows 10/1703
- version/microsoft windows 10/1709
- version/microsoft windows 10/1803
- version/microsoft windows 10/1809
- version/microsoft windows 10/1903
- canonical/microsoft windows 8.1
- version/microsoft windows server/r2
- canonical/microsoft windows server 2016
- version/microsoft windows server 2016/1803
- version/microsoft windows server 2016/1903
- canonical/microsoft windows server 2019
- version/microsoft .net framework 4/3.5.1
- canonical/microsoft windows 7
- version/microsoft windows 7/sp1
- version/microsoft windows server/r2-sp1
- version/microsoft .net framework 4/4.5.2
- canonical/microsoft windows rt
- version/microsoft .net framework 4/4.6
- version/microsoft .net framework 4/4.6.2
- version/microsoft .net framework 4/4.7
- version/microsoft .net framework 4/4.7.1
- version/microsoft .net framework 4/4.7.2
- version/microsoft .net framework 4/4.6.1
- version/microsoft .net framework 4/4.8