CVE-2020-1108
First published: Thu May 21 2020(Updated: )
A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests, aka '.NET Core & .NET Framework Denial of Service Vulnerability'.
Credit: secure@microsoft.com secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft .NET | =5.0-preview1 | |
| Microsoft .NET | =5.0-preview2 | |
| Microsoft .NET | =5.0-preview3 | |
| Microsoft .NET Core | >=2.1<=2.1.18 | |
| Microsoft .NET Core | >=3.0<=3.1.4 | |
| Microsoft .NET Framework | =2.0-sp2 | |
| Microsoft .NET Framework | =3.0-sp2 | |
| Microsoft .NET Framework | =4.6 | |
| Microsoft Windows Server 2008 | =sp2 | |
| Microsoft Windows Server 2008 | =sp2 | |
| Microsoft .NET Framework | =3.5 | |
| Microsoft Windows 8.1 | ||
| Microsoft Windows 8.1 | ||
| Microsoft .NET Framework | =4.5.2 | |
| Microsoft .NET Framework | =4.6.1 | |
| Microsoft .NET Framework | =4.6.2 | |
| Microsoft .NET Framework | =4.7 | |
| Microsoft .NET Framework | =4.7.1 | |
| Microsoft .NET Framework | =4.7.2 | |
| Microsoft .NET Framework | =4.8 | |
| Microsoft Windows Server 2012 | ||
| Microsoft Windows Server 2012 | =r2 | |
| Microsoft Windows 10 | =1607 | |
| Microsoft Windows 10 | =1607 | |
| Microsoft Windows Server 2016 | ||
| Microsoft Windows 10 | ||
| Microsoft Windows 10 | ||
| Microsoft Windows 10 | =1709 | |
| Microsoft Windows 10 | =1709 | |
| Microsoft Windows 10 | =1709 | |
| Microsoft Windows 10 | =1803 | |
| Microsoft Windows 10 | =1803 | |
| Microsoft Windows 10 | =1809 | |
| Microsoft Windows Server 2019 | ||
| Microsoft Windows 10 | =1909 | |
| Microsoft Windows 10 | =1909 | |
| Microsoft Windows 10 | =1903 | |
| Microsoft Windows 10 | =1903 | |
| Microsoft Windows 10 | =1903 | |
| Microsoft Windows 10 | =1909 | |
| Microsoft .NET Framework | =3.5.1 | |
| Microsoft Windows 7 | =sp1 | |
| Microsoft Windows 7 | =sp1 | |
| Microsoft Windows 10 | =1803 | |
| Microsoft Windows RT 8.1 | ||
| Microsoft .NET Core | =2.1 | |
| Microsoft .NET Core | =3.1 | |
| Microsoft Visual Studio 2017 | =15.9 | |
| Microsoft Visual Studio 2019 | =16.0 | |
| Microsoft Visual Studio 2019 | =16.4 | |
| Microsoft Visual Studio 2019 | =16.5 | |
| Microsoft PowerShell | =7.0 | |
| Microsoft Powershell Core | =6.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID of this denial of service vulnerability?
The vulnerability ID of this denial of service vulnerability is CVE-2020-1108.
What is the severity level of CVE-2020-1108?
CVE-2020-1108 has a severity level of high, with a CVSS score of 7.5.
Which software is affected by CVE-2020-1108?
CVE-2020-1108 affects .NET Core, .NET Framework, and other related software versions.
How does CVE-2020-1108 manifest as a vulnerability?
CVE-2020-1108 is a denial of service vulnerability that occurs due to improper handling of web requests in .NET Core and .NET Framework.
Where can I find more information about CVE-2020-1108?
More information about CVE-2020-1108 can be found at the following reference link: [CVE-2020-1108](https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1108).
- agent/severity
- agent/author
- agent/event
- agent/type
- agent/references
- agent/description
- agent/remedy
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/nvd-api
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/microsoft
- canonical/microsoft .net
- version/microsoft .net/5.0-preview1
- version/microsoft .net/5.0-preview2
- version/microsoft .net/5.0-preview3
- canonical/microsoft .net core
- version/microsoft .net core/2.1
- version/microsoft .net core/2.1.18
- version/microsoft .net core/3.0
- version/microsoft .net core/3.1.4
- canonical/microsoft .net framework
- version/microsoft .net framework/2.0-sp2
- version/microsoft .net framework/3.0-sp2
- version/microsoft .net framework/4.6
- canonical/microsoft windows server 2008
- version/microsoft windows server 2008/sp2
- version/microsoft .net framework/3.5
- canonical/microsoft windows 8.1
- version/microsoft .net framework/4.5.2
- version/microsoft .net framework/4.6.1
- version/microsoft .net framework/4.6.2
- version/microsoft .net framework/4.7
- version/microsoft .net framework/4.7.1
- version/microsoft .net framework/4.7.2
- version/microsoft .net framework/4.8
- canonical/microsoft windows server 2012
- version/microsoft windows server 2012/r2
- canonical/microsoft windows 10
- version/microsoft windows 10/1607
- canonical/microsoft windows server 2016
- version/microsoft windows 10/1709
- version/microsoft windows 10/1803
- version/microsoft windows 10/1809
- canonical/microsoft windows server 2019
- version/microsoft windows 10/1909
- version/microsoft windows 10/1903
- version/microsoft .net framework/3.5.1
- canonical/microsoft windows 7
- version/microsoft windows 7/sp1
- canonical/microsoft windows rt 8.1
- version/microsoft .net core/3.1
- canonical/microsoft visual studio 2017
- version/microsoft visual studio 2017/15.9
- canonical/microsoft visual studio 2019
- version/microsoft visual studio 2019/16.0
- version/microsoft visual studio 2019/16.4
- version/microsoft visual studio 2019/16.5
- canonical/microsoft powershell
- version/microsoft powershell/7.0
- canonical/microsoft powershell core
- version/microsoft powershell core/6.2