First published: Mon Jul 15 2019(Updated: )
A spoofing vulnerability exists in ASP.NET Core that could lead to an open redirect, aka 'ASP.NET Core Spoofing Vulnerability'.
Credit: secure@microsoft.com
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft ASP.NET Core | =2.1 | |
Microsoft ASP.NET Core | =2.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for the ASP.NET Core spoofing vulnerability is CVE-2019-1075.
The severity of CVE-2019-1075 is medium with a CVSS score of 6.1.
The affected software is Microsoft ASP.NET Core versions 2.1 and 2.2.
CVE-2019-1075 is a spoofing vulnerability in ASP.NET Core that could lead to an open redirect.
To fix the ASP.NET Core spoofing vulnerability, update to a patched version of Microsoft ASP.NET Core 2.1 or 2.2.