A Security Feature Bypass vulnerability exists in ASP.NET when the number of incorrect login attempts is not validated, aka "ASP.NET Security Feature Bypass Vulnerability." This affects ASP.NET, ASP.NET Core 1.1, ASP.NET Core 1.0, ASP.NET Core 2.0, ASP.NET MVC 5.2.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/104659 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1041267 | Third Party Advisory VDB Entry |
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8171 | Vendor Advisory Patch |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: microsoft
Published: 2018-07-11T00:00:00
Updated: 2018-07-11T09:57:01
Reserved: 2018-03-14T00:00:00
Link: CVE-2018-8171
JSON object: View
NVD Information
Status : Analyzed
Published: 2018-07-11T00:29:00.320
Modified: 2021-06-30T16:52:59.210
Link: CVE-2018-8171
JSON object: View
Redhat Information
No data.
CWE