CVE-2020-0602

A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka 'ASP.NET Core Denial of Service Vulnerability'.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
microsoftCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 88%
VendorProductVersion
microsoftasp.net_core
2.1
microsoftasp.net_core
3.0
microsoftasp.net_core
3.1
redhatenterprise_linux
8.0
redhatenterprise_linux_eus
8.1
𝑥
= Vulnerable software versions
References
https://access.redhat.com/errata/RHSA-2020:0130
https://access.redhat.com/errata/RHSA-2020:0134
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0602
https://access.redhat.com/errata/RHSA-2020:0130
https://access.redhat.com/errata/RHSA-2020:0134
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0602