CVE-2020-1161
First published: Thu May 21 2020(Updated: )
A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka 'ASP.NET Core Denial of Service Vulnerability'.
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft ASP.NET Core | =3.1 | |
| Microsoft Visual Studio 2017 | >=15.1<=15.9 | |
| Microsoft Visual Studio 2019 | >=16.0<=16.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2020-1161?
The severity of CVE-2020-1161 is high.
How does CVE-2020-1161 affect ASP.NET Core?
CVE-2020-1161 affects ASP.NET Core 3.1.
Which versions of Microsoft Visual Studio are affected by CVE-2020-1161?
CVE-2020-1161 affects Microsoft Visual Studio 2017 (version 15.1 to 15.9) and Microsoft Visual Studio 2019 (version 16.0 to 16.5).
What is the official reference for CVE-2020-1161?
The official reference for CVE-2020-1161 can be found at https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1161.
How do I fix CVE-2020-1161?
To fix CVE-2020-1161, update ASP.NET Core to the latest version and apply any patches or security updates provided by Microsoft.
- collector/nvd-index
- agent/softwarecombine
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/remedy
- agent/references
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/tags
- vendor/microsoft
- canonical/microsoft asp.net core
- version/microsoft asp.net core/3.1
- canonical/microsoft visual studio 2017
- version/microsoft visual studio 2017/15.1
- version/microsoft visual studio 2017/15.9
- canonical/microsoft visual studio 2019
- version/microsoft visual studio 2019/16.0
- version/microsoft visual studio 2019/16.5