Filtered by vendor Microsoft
Subscriptions
Filtered by product Asp.net Core
Subscriptions
Total
33 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2017-8700 | 1 Microsoft | 1 Asp.net Core | 2019-10-03 | N/A |
| ASP.NET Core 1.0, 1.1, and 2.0 allow an attacker to bypass Cross-origin Resource Sharing (CORS) configurations and retrieve normally restricted content from a web application, aka "ASP.NET Core Information Disclosure Vulnerability". | ||||
| CVE-2018-0784 | 1 Microsoft | 1 Asp.net Core | 2019-10-03 | N/A |
| ASP.NET Core 1.0. 1.1, and 2.0 allow an elevation of privilege vulnerability due to the ASP.NET Core project templates, aka "ASP.NET Core Elevation Of Privilege Vulnerability". This CVE is unique from CVE-2018-0808. | ||||
| CVE-2018-0808 | 1 Microsoft | 1 Asp.net Core | 2019-10-03 | N/A |
| ASP.NET Core 1.0. 1.1, and 2.0 allow an elevation of privilege vulnerability due to how ASP.NET web applications handle web requests, aka "ASP.NET Core Elevation Of Privilege Vulnerability". This CVE is unique from CVE-2018-0784. | ||||
| CVE-2019-1302 | 1 Microsoft | 1 Asp.net Core | 2019-09-12 | 8.8 High |
| An elevation of privilege vulnerability exists when a ASP.NET Core web application, created using vulnerable project templates, fails to properly sanitize web requests, aka 'ASP.NET Core Elevation Of Privilege Vulnerability'. | ||||
| CVE-2019-1075 | 1 Microsoft | 1 Asp.net Core | 2019-07-19 | N/A |
| A spoofing vulnerability exists in ASP.NET Core that could lead to an open redirect, aka 'ASP.NET Core Spoofing Vulnerability'. | ||||
| CVE-2019-0982 | 1 Microsoft | 1 Asp.net Core | 2019-05-20 | N/A |
| A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka 'ASP.NET Core Denial of Service Vulnerability'. | ||||
| CVE-2019-0815 | 1 Microsoft | 1 Asp.net Core | 2019-04-10 | N/A |
| A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka 'ASP.NET Core Denial of Service Vulnerability'. | ||||
| CVE-2019-0548 | 1 Microsoft | 1 Asp.net Core | 2019-01-15 | N/A |
| A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka "ASP.NET Core Denial of Service Vulnerability." This affects ASP.NET Core 2.2, ASP.NET Core 2.1. This CVE ID is unique from CVE-2019-0564. | ||||
| CVE-2019-0564 | 1 Microsoft | 1 Asp.net Core | 2019-01-11 | N/A |
| A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka "ASP.NET Core Denial of Service Vulnerability." This affects ASP.NET Core 2.1. This CVE ID is unique from CVE-2019-0548. | ||||
| CVE-2018-8292 | 1 Microsoft | 2 Asp.net Core, Powershell Core | 2018-12-06 | N/A |
| An information disclosure vulnerability exists in .NET Core when authentication information is inadvertently exposed in a redirect, aka ".NET Core Information Disclosure Vulnerability." This affects .NET Core 2.1, .NET Core 1.0, .NET Core 1.1, PowerShell Core 6.0. | ||||
| CVE-2018-0787 | 1 Microsoft | 1 Asp.net Core | 2018-04-11 | N/A |
| ASP.NET Core 1.0. 1.1, and 2.0 allow an elevation of privilege vulnerability due to how web applications that are created from templates validate web requests, aka "ASP.NET Core Elevation Of Privilege Vulnerability". | ||||
| CVE-2018-0785 | 1 Microsoft | 1 Asp.net Core | 2018-02-01 | N/A |
| ASP.NET Core 1.0. 1.1, and 2.0 allow a cross site request forgery vulnerability due to the ASP.NET Core project templates, aka "ASP.NET Core Cross Site Request Forgery Vulnerability". | ||||
| CVE-2017-11879 | 1 Microsoft | 1 Asp.net Core | 2018-02-01 | N/A |
| ASP.NET Core 2.0 allows an attacker to steal log-in session information such as cookies or authentication tokens via a specially crafted URL aka "ASP.NET Core Elevation Of Privilege Vulnerability". | ||||