Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:nuget/Microsoft.AspNetCore.All@2.1.0
Typenuget
Namespace
NameMicrosoft.AspNetCore.All
Version2.1.0
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version2.1.30
Latest_non_vulnerable_version2.1.30
Affected_by_vulnerabilities
0
url VCID-1gtv-nubh-73a9
vulnerability_id VCID-1gtv-nubh-73a9
summary Microsoft Security Advisory CVE-2019-0564: ASP.NET Core Denial of Service Vulnerability
references
0
reference_url https://access.redhat.com/errata/RHSA-2019:0040
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2019:0040
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-0564.json
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-0564.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-0564
reference_id
reference_type
scores
0
value 0.07639
scoring_system epss
scoring_elements 0.91856
published_at 2026-04-04T12:55:00Z
1
value 0.07639
scoring_system epss
scoring_elements 0.9185
published_at 2026-04-02T12:55:00Z
2
value 0.07639
scoring_system epss
scoring_elements 0.91841
published_at 2026-04-01T12:55:00Z
3
value 0.07668
scoring_system epss
scoring_elements 0.91904
published_at 2026-04-12T12:55:00Z
4
value 0.07668
scoring_system epss
scoring_elements 0.91915
published_at 2026-04-18T12:55:00Z
5
value 0.07668
scoring_system epss
scoring_elements 0.91916
published_at 2026-04-26T12:55:00Z
6
value 0.07668
scoring_system epss
scoring_elements 0.91917
published_at 2026-04-24T12:55:00Z
7
value 0.07668
scoring_system epss
scoring_elements 0.91912
published_at 2026-04-21T12:55:00Z
8
value 0.07668
scoring_system epss
scoring_elements 0.91882
published_at 2026-04-07T12:55:00Z
9
value 0.07668
scoring_system epss
scoring_elements 0.91919
published_at 2026-04-16T12:55:00Z
10
value 0.07668
scoring_system epss
scoring_elements 0.919
published_at 2026-04-13T12:55:00Z
11
value 0.07668
scoring_system epss
scoring_elements 0.91895
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-0564
3
reference_url https://github.com/aspnet/Announcements/issues/334
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/aspnet/Announcements/issues/334
4
reference_url https://github.com/github/advisory-database/issues/302
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/github/advisory-database/issues/302
5
reference_url http://www.securityfocus.com/bid/106413
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://www.securityfocus.com/bid/106413
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1660634
reference_id 1660634
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1660634
7
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:microsoft:asp.net_core:2.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:microsoft:asp.net_core:2.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:microsoft:asp.net_core:2.1:*:*:*:*:*:*:*
8
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-0564
reference_id CVE-2019-0564
reference_type
scores
0
value 5.0
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:N/I:N/A:P
1
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
2
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
3
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2019-0564
9
reference_url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0564
reference_id CVE-2019-0564
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0564
10
reference_url https://github.com/advisories/GHSA-6px8-22w5-w334
reference_id GHSA-6px8-22w5-w334
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-6px8-22w5-w334
fixed_packages
0
url pkg:nuget/Microsoft.AspNetCore.All@2.1.1
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1gtv-nubh-73a9
1
vulnerability VCID-aqyy-zs6z-v7ar
2
vulnerability VCID-cja1-29th-9qbf
3
vulnerability VCID-ct2x-rftj-tydp
4
vulnerability VCID-j761-wgke-97d8
5
vulnerability VCID-mrdj-nvz7-xyet
6
vulnerability VCID-n3cs-wjun-vfhe
7
vulnerability VCID-pa95-mtgb-yuf2
8
vulnerability VCID-wzeg-jdcg-tfct
9
vulnerability VCID-z54f-eupv-n7be
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.1
1
url pkg:nuget/Microsoft.AspNetCore.All@2.1.7
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-j761-wgke-97d8
1
vulnerability VCID-mrdj-nvz7-xyet
2
vulnerability VCID-n3cs-wjun-vfhe
3
vulnerability VCID-pa95-mtgb-yuf2
4
vulnerability VCID-wzeg-jdcg-tfct
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.7
2
url pkg:nuget/Microsoft.AspNetCore.All@2.2.0
purl pkg:nuget/Microsoft.AspNetCore.All@2.2.0
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1gtv-nubh-73a9
1
vulnerability VCID-41c2-23ch-x7ft
2
vulnerability VCID-4dn7-wv8k-57gu
3
vulnerability VCID-cja1-29th-9qbf
4
vulnerability VCID-j761-wgke-97d8
5
vulnerability VCID-mrdj-nvz7-xyet
6
vulnerability VCID-n3cs-wjun-vfhe
7
vulnerability VCID-pa95-mtgb-yuf2
8
vulnerability VCID-wzeg-jdcg-tfct
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.2.0
3
url pkg:nuget/Microsoft.AspNetCore.All@2.2.1
purl pkg:nuget/Microsoft.AspNetCore.All@2.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-j761-wgke-97d8
1
vulnerability VCID-n3cs-wjun-vfhe
2
vulnerability VCID-pa95-mtgb-yuf2
3
vulnerability VCID-wzeg-jdcg-tfct
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.2.1
aliases CVE-2019-0564, GHSA-6px8-22w5-w334
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1gtv-nubh-73a9
1
url VCID-41c2-23ch-x7ft
vulnerability_id VCID-41c2-23ch-x7ft
summary 
URL Redirection to Untrusted Site ('Open Redirect')
A spoofing vulnerability exists in ASP.NET Core that could lead to an open redirect, aka 'ASP.NET Core Spoofing Vulnerability'.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-1075
reference_id
reference_type
scores
0
value 0.00417
scoring_system epss
scoring_elements 0.61771
published_at 2026-04-24T12:55:00Z
1
value 0.00417
scoring_system epss
scoring_elements 0.61692
published_at 2026-04-07T12:55:00Z
2
value 0.00417
scoring_system epss
scoring_elements 0.61741
published_at 2026-04-08T12:55:00Z
3
value 0.00417
scoring_system epss
scoring_elements 0.61756
published_at 2026-04-09T12:55:00Z
4
value 0.00417
scoring_system epss
scoring_elements 0.61778
published_at 2026-04-11T12:55:00Z
5
value 0.00417
scoring_system epss
scoring_elements 0.61765
published_at 2026-04-12T12:55:00Z
6
value 0.00417
scoring_system epss
scoring_elements 0.61746
published_at 2026-04-13T12:55:00Z
7
value 0.00417
scoring_system epss
scoring_elements 0.61788
published_at 2026-04-26T12:55:00Z
8
value 0.00417
scoring_system epss
scoring_elements 0.61794
published_at 2026-04-18T12:55:00Z
9
value 0.00417
scoring_system epss
scoring_elements 0.61777
published_at 2026-04-21T12:55:00Z
10
value 0.00417
scoring_system epss
scoring_elements 0.61617
published_at 2026-04-01T12:55:00Z
11
value 0.00417
scoring_system epss
scoring_elements 0.61691
published_at 2026-04-02T12:55:00Z
12
value 0.00417
scoring_system epss
scoring_elements 0.61721
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-1075
1
reference_url https://github.com/aspnet/Announcements/issues/373
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/aspnet/Announcements/issues/373
2
reference_url https://github.com/github/advisory-database/issues/302
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/github/advisory-database/issues/302
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-1075
reference_id CVE-2019-1075
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2019-1075
4
reference_url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1075
reference_id CVE-2019-1075
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1075
5
reference_url https://github.com/advisories/GHSA-prrf-397v-83xh
reference_id GHSA-prrf-397v-83xh
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-prrf-397v-83xh
fixed_packages
0
url pkg:nuget/Microsoft.AspNetCore.All@2.1.12
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.12
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-j761-wgke-97d8
1
vulnerability VCID-n3cs-wjun-vfhe
2
vulnerability VCID-pa95-mtgb-yuf2
3
vulnerability VCID-wzeg-jdcg-tfct
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.12
1
url pkg:nuget/Microsoft.AspNetCore.All@2.2.1
purl pkg:nuget/Microsoft.AspNetCore.All@2.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-j761-wgke-97d8
1
vulnerability VCID-n3cs-wjun-vfhe
2
vulnerability VCID-pa95-mtgb-yuf2
3
vulnerability VCID-wzeg-jdcg-tfct
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.2.1
2
url pkg:nuget/Microsoft.AspNetCore.All@2.2.6
purl pkg:nuget/Microsoft.AspNetCore.All@2.2.6
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-j761-wgke-97d8
1
vulnerability VCID-n3cs-wjun-vfhe
2
vulnerability VCID-pa95-mtgb-yuf2
3
vulnerability VCID-wzeg-jdcg-tfct
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.2.6
aliases CVE-2019-1075, GHSA-prrf-397v-83xh
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-41c2-23ch-x7ft
2
url VCID-5crw-96ay-a7b7
vulnerability_id VCID-5crw-96ay-a7b7
summary Microsoft Security Advisory CVE-2018-8416: .NET Core Tampering Vulnerability
references
0
reference_url https://access.redhat.com/errata/RHSA-2018:3676
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:3676
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-8416.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-8416.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-8416
reference_id
reference_type
scores
0
value 0.0867
scoring_system epss
scoring_elements 0.92426
published_at 2026-04-02T12:55:00Z
1
value 0.0867
scoring_system epss
scoring_elements 0.92419
published_at 2026-04-01T12:55:00Z
2
value 0.11328
scoring_system epss
scoring_elements 0.93559
published_at 2026-04-16T12:55:00Z
3
value 0.11328
scoring_system epss
scoring_elements 0.93571
published_at 2026-04-21T12:55:00Z
4
value 0.11328
scoring_system epss
scoring_elements 0.93576
published_at 2026-04-24T12:55:00Z
5
value 0.11328
scoring_system epss
scoring_elements 0.9354
published_at 2026-04-13T12:55:00Z
6
value 0.11328
scoring_system epss
scoring_elements 0.93534
published_at 2026-04-09T12:55:00Z
7
value 0.11328
scoring_system epss
scoring_elements 0.93575
published_at 2026-04-26T12:55:00Z
8
value 0.11328
scoring_system epss
scoring_elements 0.93531
published_at 2026-04-08T12:55:00Z
9
value 0.11328
scoring_system epss
scoring_elements 0.93523
published_at 2026-04-07T12:55:00Z
10
value 0.11328
scoring_system epss
scoring_elements 0.93564
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-8416
3
reference_url https://github.com/dotnet/announcements/issues/95
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/dotnet/announcements/issues/95
4
reference_url https://github.com/github/advisory-database/issues/302
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/github/advisory-database/issues/302
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1649693
reference_id 1649693
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1649693
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-8416
reference_id CVE-2018-8416
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2018-8416
7
reference_url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8416
reference_id CVE-2018-8416
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8416
8
reference_url https://github.com/advisories/GHSA-5633-f33j-c6f7
reference_id GHSA-5633-f33j-c6f7
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-5633-f33j-c6f7
fixed_packages
0
url pkg:nuget/Microsoft.AspNetCore.All@2.1.1
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1gtv-nubh-73a9
1
vulnerability VCID-aqyy-zs6z-v7ar
2
vulnerability VCID-cja1-29th-9qbf
3
vulnerability VCID-ct2x-rftj-tydp
4
vulnerability VCID-j761-wgke-97d8
5
vulnerability VCID-mrdj-nvz7-xyet
6
vulnerability VCID-n3cs-wjun-vfhe
7
vulnerability VCID-pa95-mtgb-yuf2
8
vulnerability VCID-wzeg-jdcg-tfct
9
vulnerability VCID-z54f-eupv-n7be
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.1
1
url pkg:nuget/Microsoft.AspNetCore.All@2.2.2
purl pkg:nuget/Microsoft.AspNetCore.All@2.2.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-j761-wgke-97d8
1
vulnerability VCID-n3cs-wjun-vfhe
2
vulnerability VCID-pa95-mtgb-yuf2
3
vulnerability VCID-wzeg-jdcg-tfct
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.2.2
aliases CVE-2018-8416, GHSA-5633-f33j-c6f7
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5crw-96ay-a7b7
3
url VCID-9zu6-5d4v-f3ht
vulnerability_id VCID-9zu6-5d4v-f3ht
summary Microsoft Security Advisory CVE-2020-0603 : ASP.NET Core Remote Code Execution Vulnerability
references
0
reference_url https://access.redhat.com/errata/RHSA-2020:0130
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2020:0130
1
reference_url https://access.redhat.com/errata/RHSA-2020:0134
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2020:0134
2
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-0603.json
reference_id
reference_type
scores
0
value 8.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-0603.json
3
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-0603
reference_id
reference_type
scores
0
value 0.10785
scoring_system epss
scoring_elements 0.93379
published_at 2026-04-26T12:55:00Z
1
value 0.10785
scoring_system epss
scoring_elements 0.93348
published_at 2026-04-13T12:55:00Z
2
value 0.10785
scoring_system epss
scoring_elements 0.93366
published_at 2026-04-16T12:55:00Z
3
value 0.10785
scoring_system epss
scoring_elements 0.93371
published_at 2026-04-18T12:55:00Z
4
value 0.10785
scoring_system epss
scoring_elements 0.93378
published_at 2026-04-21T12:55:00Z
5
value 0.10785
scoring_system epss
scoring_elements 0.93382
published_at 2026-04-24T12:55:00Z
6
value 0.10785
scoring_system epss
scoring_elements 0.93318
published_at 2026-04-01T12:55:00Z
7
value 0.10785
scoring_system epss
scoring_elements 0.93326
published_at 2026-04-02T12:55:00Z
8
value 0.10785
scoring_system epss
scoring_elements 0.93333
published_at 2026-04-04T12:55:00Z
9
value 0.10785
scoring_system epss
scoring_elements 0.93332
published_at 2026-04-07T12:55:00Z
10
value 0.10785
scoring_system epss
scoring_elements 0.9334
published_at 2026-04-08T12:55:00Z
11
value 0.10785
scoring_system epss
scoring_elements 0.93345
published_at 2026-04-09T12:55:00Z
12
value 0.10785
scoring_system epss
scoring_elements 0.93349
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-0603
4
reference_url https://github.com/aspnet/Announcements/issues/403
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/aspnet/Announcements/issues/403
5
reference_url https://github.com/github/advisory-database/issues/302
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/github/advisory-database/issues/302
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-0603
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2020-0603
7
reference_url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0603
reference_id
reference_type
scores
0
value HIGH
scoring_system generic_textual
scoring_elements
url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0603
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1789624
reference_id 1789624
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1789624
9
reference_url https://github.com/advisories/GHSA-655q-9gvg-q4cm
reference_id GHSA-655q-9gvg-q4cm
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-655q-9gvg-q4cm
fixed_packages
0
url pkg:nuget/Microsoft.AspNetCore.All@2.1.1
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1gtv-nubh-73a9
1
vulnerability VCID-aqyy-zs6z-v7ar
2
vulnerability VCID-cja1-29th-9qbf
3
vulnerability VCID-ct2x-rftj-tydp
4
vulnerability VCID-j761-wgke-97d8
5
vulnerability VCID-mrdj-nvz7-xyet
6
vulnerability VCID-n3cs-wjun-vfhe
7
vulnerability VCID-pa95-mtgb-yuf2
8
vulnerability VCID-wzeg-jdcg-tfct
9
vulnerability VCID-z54f-eupv-n7be
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.1
1
url pkg:nuget/Microsoft.AspNetCore.All@2.1.15
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.15
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-j761-wgke-97d8
1
vulnerability VCID-n3cs-wjun-vfhe
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.15
2
url pkg:nuget/Microsoft.AspNetCore.All@3.1.1
purl pkg:nuget/Microsoft.AspNetCore.All@3.1.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@3.1.1
aliases CVE-2020-0603, GHSA-655q-9gvg-q4cm
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9zu6-5d4v-f3ht
4
url VCID-aqyy-zs6z-v7ar
vulnerability_id VCID-aqyy-zs6z-v7ar
summary 
Exposure of Sensitive Information to an Unauthorized Actor
The type of information that could be disclosed if an attacker successfully exploited this vulnerability is data inside the targeted website like IDs, tokens, nonces, and other sensitive information.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-34532.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-34532.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-34532
reference_id
reference_type
scores
0
value 0.00266
scoring_system epss
scoring_elements 0.50083
published_at 2026-04-09T12:55:00Z
1
value 0.00266
scoring_system epss
scoring_elements 0.50073
published_at 2026-04-24T12:55:00Z
2
value 0.00266
scoring_system epss
scoring_elements 0.50087
published_at 2026-04-21T12:55:00Z
3
value 0.00266
scoring_system epss
scoring_elements 0.50115
published_at 2026-04-18T12:55:00Z
4
value 0.00266
scoring_system epss
scoring_elements 0.50114
published_at 2026-04-16T12:55:00Z
5
value 0.00266
scoring_system epss
scoring_elements 0.5007
published_at 2026-04-13T12:55:00Z
6
value 0.00266
scoring_system epss
scoring_elements 0.50074
published_at 2026-04-12T12:55:00Z
7
value 0.00266
scoring_system epss
scoring_elements 0.501
published_at 2026-04-11T12:55:00Z
8
value 0.00266
scoring_system epss
scoring_elements 0.50078
published_at 2026-04-26T12:55:00Z
9
value 0.0029
scoring_system epss
scoring_elements 0.52373
published_at 2026-04-02T12:55:00Z
10
value 0.0029
scoring_system epss
scoring_elements 0.52328
published_at 2026-04-01T12:55:00Z
11
value 0.0029
scoring_system epss
scoring_elements 0.52401
published_at 2026-04-04T12:55:00Z
12
value 0.0029
scoring_system epss
scoring_elements 0.52366
published_at 2026-04-07T12:55:00Z
13
value 0.0029
scoring_system epss
scoring_elements 0.52419
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-34532
2
reference_url https://github.com/dotnet/announcements/issues/195
reference_id
reference_type
scores
url https://github.com/dotnet/announcements/issues/195
3
reference_url https://github.com/dotnet/aspnetcore
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/dotnet/aspnetcore
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1990300
reference_id 1990300
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1990300
5
reference_url https://security.archlinux.org/AVG-2277
reference_id AVG-2277
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2277
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2021-34532
reference_id CVE-2021-34532
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2021-34532
7
reference_url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34532
reference_id CVE-2021-34532
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34532
8
reference_url https://github.com/advisories/GHSA-q7cg-43mg-qp69
reference_id GHSA-q7cg-43mg-qp69
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-q7cg-43mg-qp69
9
reference_url https://github.com/dotnet/aspnetcore/security/advisories/GHSA-q7cg-43mg-qp69
reference_id GHSA-q7cg-43mg-qp69
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/dotnet/aspnetcore/security/advisories/GHSA-q7cg-43mg-qp69
10
reference_url https://access.redhat.com/errata/RHSA-2021:3142
reference_id RHSA-2021:3142
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:3142
11
reference_url https://access.redhat.com/errata/RHSA-2021:3143
reference_id RHSA-2021:3143
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:3143
12
reference_url https://access.redhat.com/errata/RHSA-2021:3147
reference_id RHSA-2021:3147
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:3147
13
reference_url https://access.redhat.com/errata/RHSA-2021:3148
reference_id RHSA-2021:3148
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:3148
fixed_packages
0
url pkg:nuget/Microsoft.AspNetCore.All@2.1.3
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1gtv-nubh-73a9
1
vulnerability VCID-cja1-29th-9qbf
2
vulnerability VCID-j761-wgke-97d8
3
vulnerability VCID-mrdj-nvz7-xyet
4
vulnerability VCID-n3cs-wjun-vfhe
5
vulnerability VCID-pa95-mtgb-yuf2
6
vulnerability VCID-wzeg-jdcg-tfct
7
vulnerability VCID-z54f-eupv-n7be
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.3
1
url pkg:nuget/Microsoft.AspNetCore.All@2.1.30
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.30
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.30
2
url pkg:nuget/Microsoft.AspNetCore.All@3.1.18
purl pkg:nuget/Microsoft.AspNetCore.All@3.1.18
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@3.1.18
3
url pkg:nuget/Microsoft.AspNetCore.All@5.0.9
purl pkg:nuget/Microsoft.AspNetCore.All@5.0.9
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@5.0.9
aliases CVE-2021-34532, GHSA-q7cg-43mg-qp69
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-aqyy-zs6z-v7ar
5
url VCID-cja1-29th-9qbf
vulnerability_id VCID-cja1-29th-9qbf
summary 
Uncontrolled Resource Consumption
A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka "ASP.NET Core Denial of Service Vulnerability." This affects ASP.NET Core, ASP.NET Core This CVE ID is unique from CVE-2019-0564.
references
0
reference_url https://access.redhat.com/errata/RHSA-2019:0040
reference_id
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:0040
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-0548.json
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-0548.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-0548
reference_id
reference_type
scores
0
value 0.06706
scoring_system epss
scoring_elements 0.91207
published_at 2026-04-02T12:55:00Z
1
value 0.06706
scoring_system epss
scoring_elements 0.91202
published_at 2026-04-01T12:55:00Z
2
value 0.06706
scoring_system epss
scoring_elements 0.91216
published_at 2026-04-04T12:55:00Z
3
value 0.06732
scoring_system epss
scoring_elements 0.91314
published_at 2026-04-26T12:55:00Z
4
value 0.06732
scoring_system epss
scoring_elements 0.91301
published_at 2026-04-18T12:55:00Z
5
value 0.06732
scoring_system epss
scoring_elements 0.91303
published_at 2026-04-21T12:55:00Z
6
value 0.06732
scoring_system epss
scoring_elements 0.91248
published_at 2026-04-07T12:55:00Z
7
value 0.06732
scoring_system epss
scoring_elements 0.91261
published_at 2026-04-08T12:55:00Z
8
value 0.06732
scoring_system epss
scoring_elements 0.91268
published_at 2026-04-09T12:55:00Z
9
value 0.06732
scoring_system epss
scoring_elements 0.91275
published_at 2026-04-11T12:55:00Z
10
value 0.06732
scoring_system epss
scoring_elements 0.91278
published_at 2026-04-12T12:55:00Z
11
value 0.06732
scoring_system epss
scoring_elements 0.91277
published_at 2026-04-13T12:55:00Z
12
value 0.06732
scoring_system epss
scoring_elements 0.91302
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-0548
3
reference_url http://www.securityfocus.com/bid/106410
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/106410
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1660636
reference_id 1660636
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1660636
5
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:microsoft:asp.net_core:2.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:microsoft:asp.net_core:2.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:microsoft:asp.net_core:2.1:*:*:*:*:*:*:*
6
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:microsoft:asp.net_core:2.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:microsoft:asp.net_core:2.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:microsoft:asp.net_core:2.2:*:*:*:*:*:*:*
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-0548
reference_id CVE-2019-0548
reference_type
scores
0
value 5.0
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:N/I:N/A:P
1
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://nvd.nist.gov/vuln/detail/CVE-2019-0548
8
reference_url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0548
reference_id CVE-2019-0548
reference_type
scores
url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0548
fixed_packages
aliases CVE-2019-0548
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cja1-29th-9qbf
6
url VCID-ct2x-rftj-tydp
vulnerability_id VCID-ct2x-rftj-tydp
summary 
Moderate severity vulnerability that affects Microsoft.AspNetCore.All, Microsoft.AspNetCore.App, and Microsoft.AspNetCore.Server.Kestrel.Core
Microsoft is aware of a denial of service vulnerability in ASP.NET Core when a malformed request is terminated. An attacker who successfully exploited this vulnerability could cause a denial of service attack.

The update addresses the vulnerability by correcting how ASP.NET Core handles such requests.
references
0
reference_url https://github.com/aspnet/Announcements/issues/311
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/aspnet/Announcements/issues/311
1
reference_url https://github.com/advisories/GHSA-cgpw-2gph-2r9g
reference_id GHSA-cgpw-2gph-2r9g
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/advisories/GHSA-cgpw-2gph-2r9g
fixed_packages
0
url pkg:nuget/Microsoft.AspNetCore.All@2.1.2
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1gtv-nubh-73a9
1
vulnerability VCID-aqyy-zs6z-v7ar
2
vulnerability VCID-cja1-29th-9qbf
3
vulnerability VCID-j761-wgke-97d8
4
vulnerability VCID-mrdj-nvz7-xyet
5
vulnerability VCID-n3cs-wjun-vfhe
6
vulnerability VCID-pa95-mtgb-yuf2
7
vulnerability VCID-wzeg-jdcg-tfct
8
vulnerability VCID-z54f-eupv-n7be
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.2
aliases GHSA-cgpw-2gph-2r9g, GMS-2018-36, GMS-2018-38, GMS-2018-44
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ct2x-rftj-tydp
7
url VCID-eeub-ree5-dyez
vulnerability_id VCID-eeub-ree5-dyez
summary 
Uncontrolled Resource Consumption
.NET and Visual Studio Denial of Service Vulnerability
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-38180.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-38180.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-38180
reference_id
reference_type
scores
0
value 0.00882
scoring_system epss
scoring_elements 0.75454
published_at 2026-04-26T12:55:00Z
1
value 0.00882
scoring_system epss
scoring_elements 0.75449
published_at 2026-04-24T12:55:00Z
2
value 0.00882
scoring_system epss
scoring_elements 0.75415
published_at 2026-04-21T12:55:00Z
3
value 0.00882
scoring_system epss
scoring_elements 0.75425
published_at 2026-04-18T12:55:00Z
4
value 0.00882
scoring_system epss
scoring_elements 0.75419
published_at 2026-04-16T12:55:00Z
5
value 0.00882
scoring_system epss
scoring_elements 0.75377
published_at 2026-04-13T12:55:00Z
6
value 0.00882
scoring_system epss
scoring_elements 0.75388
published_at 2026-04-12T12:55:00Z
7
value 0.00882
scoring_system epss
scoring_elements 0.75358
published_at 2026-04-04T12:55:00Z
8
value 0.00882
scoring_system epss
scoring_elements 0.75326
published_at 2026-04-02T12:55:00Z
9
value 0.00882
scoring_system epss
scoring_elements 0.7541
published_at 2026-04-11T12:55:00Z
10
value 0.00882
scoring_system epss
scoring_elements 0.7539
published_at 2026-04-09T12:55:00Z
11
value 0.00882
scoring_system epss
scoring_elements 0.7538
published_at 2026-04-08T12:55:00Z
12
value 0.00882
scoring_system epss
scoring_elements 0.75337
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-38180
2
reference_url https://github.com/dotnet/runtime
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/dotnet/runtime
3
reference_url https://github.com/dotnet/runtime/issues/90170
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/dotnet/runtime/issues/90170
4
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CL2L4WE5QRT7WEXANYXSKSU43APC5N2V
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CL2L4WE5QRT7WEXANYXSKSU43APC5N2V
5
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NWVZFKTLNMNKPZ755EMRYIA6GHFOWGKY
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NWVZFKTLNMNKPZ755EMRYIA6GHFOWGKY
6
reference_url https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-38180
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-38180
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2228621
reference_id 2228621
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2228621
8
reference_url https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-38180
reference_id CVE-2023-38180
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:H
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:Y/T:P/P:M/B:A/M:M/D:A/2024-07-24T20:42:20Z/
url https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-38180
9
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-38180
reference_id CVE-2023-38180
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2023-38180
10
reference_url https://github.com/advisories/GHSA-vmch-3w2x-vhgq
reference_id GHSA-vmch-3w2x-vhgq
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-vmch-3w2x-vhgq
11
reference_url https://github.com/dotnet/runtime/security/advisories/GHSA-vmch-3w2x-vhgq
reference_id GHSA-vmch-3w2x-vhgq
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/dotnet/runtime/security/advisories/GHSA-vmch-3w2x-vhgq
12
reference_url https://access.redhat.com/errata/RHSA-2023:4639
reference_id RHSA-2023:4639
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:4639
13
reference_url https://access.redhat.com/errata/RHSA-2023:4640
reference_id RHSA-2023:4640
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:4640
14
reference_url https://access.redhat.com/errata/RHSA-2023:4641
reference_id RHSA-2023:4641
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:4641
15
reference_url https://access.redhat.com/errata/RHSA-2023:4642
reference_id RHSA-2023:4642
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:4642
16
reference_url https://access.redhat.com/errata/RHSA-2023:4643
reference_id RHSA-2023:4643
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:4643
17
reference_url https://access.redhat.com/errata/RHSA-2023:4644
reference_id RHSA-2023:4644
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:4644
18
reference_url https://access.redhat.com/errata/RHSA-2023:4645
reference_id RHSA-2023:4645
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:4645
19
reference_url https://usn.ubuntu.com/6278-1/
reference_id USN-6278-1
reference_type
scores
url https://usn.ubuntu.com/6278-1/
20
reference_url https://usn.ubuntu.com/6278-2/
reference_id USN-6278-2
reference_type
scores
url https://usn.ubuntu.com/6278-2/
fixed_packages
0
url pkg:nuget/Microsoft.AspNetCore.All@2.1.1
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1gtv-nubh-73a9
1
vulnerability VCID-aqyy-zs6z-v7ar
2
vulnerability VCID-cja1-29th-9qbf
3
vulnerability VCID-ct2x-rftj-tydp
4
vulnerability VCID-j761-wgke-97d8
5
vulnerability VCID-mrdj-nvz7-xyet
6
vulnerability VCID-n3cs-wjun-vfhe
7
vulnerability VCID-pa95-mtgb-yuf2
8
vulnerability VCID-wzeg-jdcg-tfct
9
vulnerability VCID-z54f-eupv-n7be
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.1
aliases CVE-2023-38180, GHSA-vmch-3w2x-vhgq
risk_score 10.0
exploitability 2.0
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-eeub-ree5-dyez
8
url VCID-fm28-azef-buh6
vulnerability_id VCID-fm28-azef-buh6
summary 
Denial of service in ASP.NET Core
A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka 'ASP.NET Core Denial of Service Vulnerability'.
references
0
reference_url https://access.redhat.com/errata/RHSA-2020:0130
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2020:0130
1
reference_url https://access.redhat.com/errata/RHSA-2020:0134
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2020:0134
2
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-0602.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-0602.json
3
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-0602
reference_id
reference_type
scores
0
value 0.04034
scoring_system epss
scoring_elements 0.88525
published_at 2026-04-26T12:55:00Z
1
value 0.04034
scoring_system epss
scoring_elements 0.88503
published_at 2026-04-21T12:55:00Z
2
value 0.04034
scoring_system epss
scoring_elements 0.88495
published_at 2026-04-13T12:55:00Z
3
value 0.04034
scoring_system epss
scoring_elements 0.88509
published_at 2026-04-16T12:55:00Z
4
value 0.04034
scoring_system epss
scoring_elements 0.88506
published_at 2026-04-18T12:55:00Z
5
value 0.04034
scoring_system epss
scoring_elements 0.88519
published_at 2026-04-24T12:55:00Z
6
value 0.04034
scoring_system epss
scoring_elements 0.88441
published_at 2026-04-01T12:55:00Z
7
value 0.04034
scoring_system epss
scoring_elements 0.88449
published_at 2026-04-02T12:55:00Z
8
value 0.04034
scoring_system epss
scoring_elements 0.88464
published_at 2026-04-04T12:55:00Z
9
value 0.04034
scoring_system epss
scoring_elements 0.88467
published_at 2026-04-07T12:55:00Z
10
value 0.04034
scoring_system epss
scoring_elements 0.88486
published_at 2026-04-08T12:55:00Z
11
value 0.04034
scoring_system epss
scoring_elements 0.88492
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-0602
4
reference_url https://github.com/aspnet/Announcements/issues/402
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/aspnet/Announcements/issues/402
5
reference_url https://github.com/github/advisory-database/issues/302
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/github/advisory-database/issues/302
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-0602
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2020-0602
7
reference_url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0602
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0602
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1789623
reference_id 1789623
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1789623
9
reference_url https://github.com/advisories/GHSA-23cv-jh4v-vffm
reference_id GHSA-23cv-jh4v-vffm
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-23cv-jh4v-vffm
fixed_packages
0
url pkg:nuget/Microsoft.AspNetCore.All@2.1.1
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1gtv-nubh-73a9
1
vulnerability VCID-aqyy-zs6z-v7ar
2
vulnerability VCID-cja1-29th-9qbf
3
vulnerability VCID-ct2x-rftj-tydp
4
vulnerability VCID-j761-wgke-97d8
5
vulnerability VCID-mrdj-nvz7-xyet
6
vulnerability VCID-n3cs-wjun-vfhe
7
vulnerability VCID-pa95-mtgb-yuf2
8
vulnerability VCID-wzeg-jdcg-tfct
9
vulnerability VCID-z54f-eupv-n7be
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.1
1
url pkg:nuget/Microsoft.AspNetCore.All@2.1.15
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.15
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-j761-wgke-97d8
1
vulnerability VCID-n3cs-wjun-vfhe
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.15
2
url pkg:nuget/Microsoft.AspNetCore.All@3.1.1
purl pkg:nuget/Microsoft.AspNetCore.All@3.1.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@3.1.1
aliases CVE-2020-0602, GHSA-23cv-jh4v-vffm
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fm28-azef-buh6
9
url VCID-j761-wgke-97d8
vulnerability_id VCID-j761-wgke-97d8
summary A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka `ASP.NET Core Denial of Service Vulnerability`.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1597.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1597.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-1597
reference_id
reference_type
scores
0
value 0.07555
scoring_system epss
scoring_elements 0.9185
published_at 2026-04-26T12:55:00Z
1
value 0.07555
scoring_system epss
scoring_elements 0.91788
published_at 2026-04-01T12:55:00Z
2
value 0.07555
scoring_system epss
scoring_elements 0.91796
published_at 2026-04-02T12:55:00Z
3
value 0.07555
scoring_system epss
scoring_elements 0.91802
published_at 2026-04-04T12:55:00Z
4
value 0.07555
scoring_system epss
scoring_elements 0.9181
published_at 2026-04-07T12:55:00Z
5
value 0.07555
scoring_system epss
scoring_elements 0.91823
published_at 2026-04-08T12:55:00Z
6
value 0.07555
scoring_system epss
scoring_elements 0.91829
published_at 2026-04-09T12:55:00Z
7
value 0.07555
scoring_system epss
scoring_elements 0.91833
published_at 2026-04-11T12:55:00Z
8
value 0.07555
scoring_system epss
scoring_elements 0.91835
published_at 2026-04-12T12:55:00Z
9
value 0.07555
scoring_system epss
scoring_elements 0.91831
published_at 2026-04-13T12:55:00Z
10
value 0.07555
scoring_system epss
scoring_elements 0.91851
published_at 2026-04-24T12:55:00Z
11
value 0.07555
scoring_system epss
scoring_elements 0.91845
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-1597
2
reference_url https://github.com/dotnet/announcements/issues/162
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/dotnet/announcements/issues/162
3
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WH5FQ5VT3JGHXFXOETHCTBWJUIAPGHHT
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WH5FQ5VT3JGHXFXOETHCTBWJUIAPGHHT
4
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WH5FQ5VT3JGHXFXOETHCTBWJUIAPGHHT/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WH5FQ5VT3JGHXFXOETHCTBWJUIAPGHHT/
5
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZW4CBI26KSO3PRL3HLVVISXPPOYUHSXO
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZW4CBI26KSO3PRL3HLVVISXPPOYUHSXO
6
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZW4CBI26KSO3PRL3HLVVISXPPOYUHSXO/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZW4CBI26KSO3PRL3HLVVISXPPOYUHSXO/
7
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WH5FQ5VT3JGHXFXOETHCTBWJUIAPGHHT
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WH5FQ5VT3JGHXFXOETHCTBWJUIAPGHHT
8
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WH5FQ5VT3JGHXFXOETHCTBWJUIAPGHHT/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WH5FQ5VT3JGHXFXOETHCTBWJUIAPGHHT/
9
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZW4CBI26KSO3PRL3HLVVISXPPOYUHSXO
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZW4CBI26KSO3PRL3HLVVISXPPOYUHSXO
10
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZW4CBI26KSO3PRL3HLVVISXPPOYUHSXO/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZW4CBI26KSO3PRL3HLVVISXPPOYUHSXO/
11
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-1597
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2020-1597
12
reference_url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1597
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1597
13
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1861110
reference_id 1861110
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1861110
14
reference_url https://github.com/advisories/GHSA-f8qx-mjcq-wfgx
reference_id GHSA-f8qx-mjcq-wfgx
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-f8qx-mjcq-wfgx
15
reference_url https://access.redhat.com/errata/RHSA-2020:3421
reference_id RHSA-2020:3421
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:3421
16
reference_url https://access.redhat.com/errata/RHSA-2020:3422
reference_id RHSA-2020:3422
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:3422
fixed_packages
0
url pkg:nuget/Microsoft.AspNetCore.All@2.1.21
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.21
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-j761-wgke-97d8
1
vulnerability VCID-n3cs-wjun-vfhe
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.21
1
url pkg:nuget/Microsoft.AspNetCore.All@3.1.7
purl pkg:nuget/Microsoft.AspNetCore.All@3.1.7
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@3.1.7
aliases CVE-2020-1597, GHSA-f8qx-mjcq-wfgx
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-j761-wgke-97d8
10
url VCID-mrdj-nvz7-xyet
vulnerability_id VCID-mrdj-nvz7-xyet
summary Microsoft Security Advisory CVE-2019-0982: ASP.NET Core Denial of Service Vulnerability
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-0982
reference_id
reference_type
scores
0
value 0.04508
scoring_system epss
scoring_elements 0.89169
published_at 2026-04-26T12:55:00Z
1
value 0.04508
scoring_system epss
scoring_elements 0.8911
published_at 2026-04-07T12:55:00Z
2
value 0.04508
scoring_system epss
scoring_elements 0.89127
published_at 2026-04-08T12:55:00Z
3
value 0.04508
scoring_system epss
scoring_elements 0.89132
published_at 2026-04-09T12:55:00Z
4
value 0.04508
scoring_system epss
scoring_elements 0.89143
published_at 2026-04-11T12:55:00Z
5
value 0.04508
scoring_system epss
scoring_elements 0.89139
published_at 2026-04-12T12:55:00Z
6
value 0.04508
scoring_system epss
scoring_elements 0.89138
published_at 2026-04-13T12:55:00Z
7
value 0.04508
scoring_system epss
scoring_elements 0.8915
published_at 2026-04-18T12:55:00Z
8
value 0.04508
scoring_system epss
scoring_elements 0.89147
published_at 2026-04-21T12:55:00Z
9
value 0.04508
scoring_system epss
scoring_elements 0.89164
published_at 2026-04-24T12:55:00Z
10
value 0.04508
scoring_system epss
scoring_elements 0.89083
published_at 2026-04-01T12:55:00Z
11
value 0.04508
scoring_system epss
scoring_elements 0.89092
published_at 2026-04-02T12:55:00Z
12
value 0.04508
scoring_system epss
scoring_elements 0.89107
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-0982
1
reference_url https://github.com/aspnet/Announcements/issues/359
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/aspnet/Announcements/issues/359
2
reference_url https://github.com/github/advisory-database/issues/302
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/github/advisory-database/issues/302
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-0982
reference_id CVE-2019-0982
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2019-0982
4
reference_url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0982
reference_id CVE-2019-0982
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0982
5
reference_url https://github.com/advisories/GHSA-4jxx-4qxw-prxm
reference_id GHSA-4jxx-4qxw-prxm
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-4jxx-4qxw-prxm
fixed_packages
0
url pkg:nuget/Microsoft.AspNetCore.All@2.2.1
purl pkg:nuget/Microsoft.AspNetCore.All@2.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-j761-wgke-97d8
1
vulnerability VCID-n3cs-wjun-vfhe
2
vulnerability VCID-pa95-mtgb-yuf2
3
vulnerability VCID-wzeg-jdcg-tfct
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.2.1
aliases CVE-2019-0982, GHSA-4jxx-4qxw-prxm
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mrdj-nvz7-xyet
11
url VCID-n3cs-wjun-vfhe
vulnerability_id VCID-n3cs-wjun-vfhe
summary 
Cookie parsing failure
A security feature bypass vulnerability exists in the way Microsoft ASP.NET Core parses encoded cookie names.The ASP.NET Core cookie parser decodes entire cookie strings which could allow a malicious attacker to set a second cookie with the name being percent encoded.The security update addresses the vulnerability by fixing the way the ASP.NET Core cookie parser handles encoded names., aka 'Microsoft ASP.NET Core Security Feature Bypass Vulnerability'.
references
0
reference_url https://access.redhat.com/errata/RHSA-2020:3699
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:P/RL:O/RC:C
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-10T18:21:43Z/
url https://access.redhat.com/errata/RHSA-2020:3699
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1045.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1045.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-1045
reference_id
reference_type
scores
0
value 0.20401
scoring_system epss
scoring_elements 0.9554
published_at 2026-04-13T12:55:00Z
1
value 0.20401
scoring_system epss
scoring_elements 0.95539
published_at 2026-04-12T12:55:00Z
2
value 0.20401
scoring_system epss
scoring_elements 0.95537
published_at 2026-04-11T12:55:00Z
3
value 0.20401
scoring_system epss
scoring_elements 0.95533
published_at 2026-04-09T12:55:00Z
4
value 0.20401
scoring_system epss
scoring_elements 0.9553
published_at 2026-04-08T12:55:00Z
5
value 0.20401
scoring_system epss
scoring_elements 0.95524
published_at 2026-04-07T12:55:00Z
6
value 0.20401
scoring_system epss
scoring_elements 0.9552
published_at 2026-04-04T12:55:00Z
7
value 0.20401
scoring_system epss
scoring_elements 0.95505
published_at 2026-04-01T12:55:00Z
8
value 0.20401
scoring_system epss
scoring_elements 0.95558
published_at 2026-04-26T12:55:00Z
9
value 0.20401
scoring_system epss
scoring_elements 0.95557
published_at 2026-04-24T12:55:00Z
10
value 0.20401
scoring_system epss
scoring_elements 0.95555
published_at 2026-04-21T12:55:00Z
11
value 0.20401
scoring_system epss
scoring_elements 0.95549
published_at 2026-04-16T12:55:00Z
12
value 0.20401
scoring_system epss
scoring_elements 0.95514
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-1045
3
reference_url https://github.com/dotnet/announcements/issues/165
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/dotnet/announcements/issues/165
4
reference_url https://github.com/dotnet/aspnetcore/issues/25701
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/dotnet/aspnetcore/issues/25701
5
reference_url https://github.com/dotnet/aspnetcore/issues/25701#issuecomment-689434477
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/dotnet/aspnetcore/issues/25701#issuecomment-689434477
6
reference_url https://github.com/dotnet/aspnetcore/pull/24264
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/dotnet/aspnetcore/pull/24264
7
reference_url https://github.com/dotnet/core/blob/main/release-notes/3.1/3.1.8/3.1.8.md#changes-in-318
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:P/RL:O/RC:C
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-10T18:21:43Z/
url https://github.com/dotnet/core/blob/main/release-notes/3.1/3.1.8/3.1.8.md#changes-in-318
8
reference_url https://github.com/github/advisory-database/issues/302
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/github/advisory-database/issues/302
9
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5LN2FUVBSVPGK7AU3NMLO3YR6CGONQPB
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5LN2FUVBSVPGK7AU3NMLO3YR6CGONQPB
10
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ASICXQXS4M7MTAF6SGQMCLCA63DLCUT3
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ASICXQXS4M7MTAF6SGQMCLCA63DLCUT3
11
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5LN2FUVBSVPGK7AU3NMLO3YR6CGONQPB
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5LN2FUVBSVPGK7AU3NMLO3YR6CGONQPB
12
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5LN2FUVBSVPGK7AU3NMLO3YR6CGONQPB/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5LN2FUVBSVPGK7AU3NMLO3YR6CGONQPB/
13
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ASICXQXS4M7MTAF6SGQMCLCA63DLCUT3
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ASICXQXS4M7MTAF6SGQMCLCA63DLCUT3
14
reference_url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ASICXQXS4M7MTAF6SGQMCLCA63DLCUT3/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ASICXQXS4M7MTAF6SGQMCLCA63DLCUT3/
15
reference_url https://nvd.nist.gov/vuln/detail/CVE-2020-1045
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2020-1045
16
reference_url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1045
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:P/RL:O/RC:C
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-10T18:21:43Z/
url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1045
17
reference_url https://security.snyk.io/vuln/SNYK-RHEL8-DOTNET-1439600
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:P/RL:O/RC:C
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
2
value HIGH
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-10T18:21:43Z/
url https://security.snyk.io/vuln/SNYK-RHEL8-DOTNET-1439600
18
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1873451
reference_id 1873451
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1873451
19
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5LN2FUVBSVPGK7AU3NMLO3YR6CGONQPB/
reference_id 5LN2FUVBSVPGK7AU3NMLO3YR6CGONQPB
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:P/RL:O/RC:C
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-10T18:21:43Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5LN2FUVBSVPGK7AU3NMLO3YR6CGONQPB/
20
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ASICXQXS4M7MTAF6SGQMCLCA63DLCUT3/
reference_id ASICXQXS4M7MTAF6SGQMCLCA63DLCUT3
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:P/RL:O/RC:C
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-10T18:21:43Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ASICXQXS4M7MTAF6SGQMCLCA63DLCUT3/
21
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:microsoft:asp.net_core:2.1*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:microsoft:asp.net_core:2.1*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:microsoft:asp.net_core:2.1*:*:*:*:*:*:*:*
22
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:microsoft:asp.net_core:3.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:microsoft:asp.net_core:3.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:microsoft:asp.net_core:3.1:*:*:*:*:*:*:*
23
reference_url https://github.com/advisories/GHSA-hxrm-9w7p-39cc
reference_id GHSA-hxrm-9w7p-39cc
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-hxrm-9w7p-39cc
24
reference_url https://access.redhat.com/errata/RHSA-2020:3697
reference_id RHSA-2020:3697
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:3697
fixed_packages
0
url pkg:nuget/Microsoft.AspNetCore.All@3.1.8
purl pkg:nuget/Microsoft.AspNetCore.All@3.1.8
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@3.1.8
aliases CVE-2020-1045, GHSA-hxrm-9w7p-39cc
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n3cs-wjun-vfhe
12
url VCID-pa95-mtgb-yuf2
vulnerability_id VCID-pa95-mtgb-yuf2
summary Microsoft Security Advisory CVE-2019-1302: ASP.NET Core Elevation Of Privilege Vulnerability
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-1302
reference_id
reference_type
scores
0
value 0.09908
scoring_system epss
scoring_elements 0.93035
published_at 2026-04-26T12:55:00Z
1
value 0.09908
scoring_system epss
scoring_elements 0.93005
published_at 2026-04-09T12:55:00Z
2
value 0.09908
scoring_system epss
scoring_elements 0.9301
published_at 2026-04-11T12:55:00Z
3
value 0.09908
scoring_system epss
scoring_elements 0.93008
published_at 2026-04-12T12:55:00Z
4
value 0.09908
scoring_system epss
scoring_elements 0.93009
published_at 2026-04-13T12:55:00Z
5
value 0.09908
scoring_system epss
scoring_elements 0.93019
published_at 2026-04-16T12:55:00Z
6
value 0.09908
scoring_system epss
scoring_elements 0.93021
published_at 2026-04-18T12:55:00Z
7
value 0.09908
scoring_system epss
scoring_elements 0.93029
published_at 2026-04-21T12:55:00Z
8
value 0.09908
scoring_system epss
scoring_elements 0.92981
published_at 2026-04-01T12:55:00Z
9
value 0.09908
scoring_system epss
scoring_elements 0.9299
published_at 2026-04-02T12:55:00Z
10
value 0.09908
scoring_system epss
scoring_elements 0.92993
published_at 2026-04-04T12:55:00Z
11
value 0.09908
scoring_system epss
scoring_elements 0.92992
published_at 2026-04-07T12:55:00Z
12
value 0.09908
scoring_system epss
scoring_elements 0.93001
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-1302
1
reference_url https://github.com/aspnet/Announcements/issues/384
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/aspnet/Announcements/issues/384
2
reference_url https://github.com/github/advisory-database/issues/302
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/github/advisory-database/issues/302
3
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-1302
reference_id
reference_type
scores
0
value 6.8
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:P/I:P/A:P
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2019-1302
4
reference_url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1302
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1302
5
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:microsoft:asp.net_core:2.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:microsoft:asp.net_core:2.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:microsoft:asp.net_core:2.1:*:*:*:*:*:*:*
6
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:microsoft:asp.net_core:2.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:microsoft:asp.net_core:2.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:microsoft:asp.net_core:2.2:*:*:*:*:*:*:*
7
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:microsoft:asp.net_core:3.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:microsoft:asp.net_core:3.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:microsoft:asp.net_core:3.0:*:*:*:*:*:*:*
8
reference_url https://github.com/advisories/GHSA-xr8f-59pp-rxxh
reference_id GHSA-xr8f-59pp-rxxh
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-xr8f-59pp-rxxh
fixed_packages
aliases CVE-2019-1302, GHSA-xr8f-59pp-rxxh
risk_score 4.0
exploitability 0.5
weighted_severity 7.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pa95-mtgb-yuf2
13
url VCID-wzeg-jdcg-tfct
vulnerability_id VCID-wzeg-jdcg-tfct
summary Microsoft Security Advisory CVE-2018-8269: Denial of Service Vulnerability in OData
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-8269
reference_id
reference_type
scores
0
value 0.24647
scoring_system epss
scoring_elements 0.96152
published_at 2026-04-26T12:55:00Z
1
value 0.24647
scoring_system epss
scoring_elements 0.96098
published_at 2026-04-01T12:55:00Z
2
value 0.24647
scoring_system epss
scoring_elements 0.96106
published_at 2026-04-02T12:55:00Z
3
value 0.24647
scoring_system epss
scoring_elements 0.96112
published_at 2026-04-04T12:55:00Z
4
value 0.24647
scoring_system epss
scoring_elements 0.96117
published_at 2026-04-07T12:55:00Z
5
value 0.24647
scoring_system epss
scoring_elements 0.96128
published_at 2026-04-08T12:55:00Z
6
value 0.24647
scoring_system epss
scoring_elements 0.96131
published_at 2026-04-09T12:55:00Z
7
value 0.24647
scoring_system epss
scoring_elements 0.96134
published_at 2026-04-11T12:55:00Z
8
value 0.24647
scoring_system epss
scoring_elements 0.96133
published_at 2026-04-12T12:55:00Z
9
value 0.24647
scoring_system epss
scoring_elements 0.96135
published_at 2026-04-13T12:55:00Z
10
value 0.24647
scoring_system epss
scoring_elements 0.96143
published_at 2026-04-16T12:55:00Z
11
value 0.24647
scoring_system epss
scoring_elements 0.96148
published_at 2026-04-18T12:55:00Z
12
value 0.24647
scoring_system epss
scoring_elements 0.96149
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-8269
1
reference_url https://github.com/aspnet/Announcements/issues/385
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/aspnet/Announcements/issues/385
2
reference_url https://github.com/dotnet/aspnetcore/issues/13860
reference_id
reference_type
scores
url https://github.com/dotnet/aspnetcore/issues/13860
3
reference_url https://github.com/github/advisory-database/issues/302
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/github/advisory-database/issues/302
4
reference_url https://www.exploit-db.com/exploits/46101
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://www.exploit-db.com/exploits/46101
5
reference_url https://www.exploit-db.com/exploits/46101/
reference_id
reference_type
scores
url https://www.exploit-db.com/exploits/46101/
6
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/46101.rb
reference_id CVE-2018-8269
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/46101.rb
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-8269
reference_id CVE-2018-8269
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2018-8269
8
reference_url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8269
reference_id CVE-2018-8269
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8269
9
reference_url https://github.com/advisories/GHSA-mv2r-q4g5-j8q5
reference_id GHSA-mv2r-q4g5-j8q5
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/advisories/GHSA-mv2r-q4g5-j8q5
fixed_packages
0
url pkg:nuget/Microsoft.AspNetCore.All@2.1.13
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.13
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-j761-wgke-97d8
1
vulnerability VCID-n3cs-wjun-vfhe
2
vulnerability VCID-pa95-mtgb-yuf2
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.13
1
url pkg:nuget/Microsoft.AspNetCore.All@2.2.0-preview1-35029
purl pkg:nuget/Microsoft.AspNetCore.All@2.2.0-preview1-35029
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-cja1-29th-9qbf
1
vulnerability VCID-j761-wgke-97d8
2
vulnerability VCID-mrdj-nvz7-xyet
3
vulnerability VCID-n3cs-wjun-vfhe
4
vulnerability VCID-pa95-mtgb-yuf2
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.2.0-preview1-35029
2
url pkg:nuget/Microsoft.AspNetCore.All@2.2.7
purl pkg:nuget/Microsoft.AspNetCore.All@2.2.7
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-j761-wgke-97d8
1
vulnerability VCID-n3cs-wjun-vfhe
2
vulnerability VCID-pa95-mtgb-yuf2
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.2.7
aliases CVE-2018-8269, GHSA-mv2r-q4g5-j8q5
risk_score 10.0
exploitability 2.0
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wzeg-jdcg-tfct
14
url VCID-z54f-eupv-n7be
vulnerability_id VCID-z54f-eupv-n7be
summary Microsoft Security Advisory CVE-2018-8409: ASP.NET Core Denial Of Service Vulnerability
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-8409.json
reference_id
reference_type
scores
0
value 5.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-8409.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-8409
reference_id
reference_type
scores
0
value 0.1435
scoring_system epss
scoring_elements 0.94433
published_at 2026-04-26T12:55:00Z
1
value 0.1435
scoring_system epss
scoring_elements 0.94393
published_at 2026-04-07T12:55:00Z
2
value 0.1435
scoring_system epss
scoring_elements 0.94403
published_at 2026-04-08T12:55:00Z
3
value 0.1435
scoring_system epss
scoring_elements 0.94407
published_at 2026-04-09T12:55:00Z
4
value 0.1435
scoring_system epss
scoring_elements 0.94409
published_at 2026-04-11T12:55:00Z
5
value 0.1435
scoring_system epss
scoring_elements 0.9441
published_at 2026-04-13T12:55:00Z
6
value 0.1435
scoring_system epss
scoring_elements 0.94425
published_at 2026-04-16T12:55:00Z
7
value 0.1435
scoring_system epss
scoring_elements 0.94431
published_at 2026-04-18T12:55:00Z
8
value 0.1435
scoring_system epss
scoring_elements 0.94434
published_at 2026-04-21T12:55:00Z
9
value 0.1435
scoring_system epss
scoring_elements 0.94435
published_at 2026-04-24T12:55:00Z
10
value 0.1435
scoring_system epss
scoring_elements 0.94373
published_at 2026-04-01T12:55:00Z
11
value 0.1435
scoring_system epss
scoring_elements 0.94381
published_at 2026-04-02T12:55:00Z
12
value 0.1435
scoring_system epss
scoring_elements 0.94392
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-8409
2
reference_url https://github.com/aspnet/Announcements/issues/316
reference_id
reference_type
scores
url https://github.com/aspnet/Announcements/issues/316
3
reference_url https://github.com/dotnet/announcements/issues/83
reference_id
reference_type
scores
url https://github.com/dotnet/announcements/issues/83
4
reference_url http://www.securityfocus.com/bid/105223
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://www.securityfocus.com/bid/105223
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1626263
reference_id 1626263
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1626263
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-8409
reference_id CVE-2018-8409
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2018-8409
7
reference_url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8409
reference_id CVE-2018-8409
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8409
8
reference_url https://github.com/advisories/GHSA-j378-6mmw-hqfr
reference_id GHSA-j378-6mmw-hqfr
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/advisories/GHSA-j378-6mmw-hqfr
fixed_packages
0
url pkg:nuget/Microsoft.AspNetCore.All@2.1.1
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1gtv-nubh-73a9
1
vulnerability VCID-aqyy-zs6z-v7ar
2
vulnerability VCID-cja1-29th-9qbf
3
vulnerability VCID-ct2x-rftj-tydp
4
vulnerability VCID-j761-wgke-97d8
5
vulnerability VCID-mrdj-nvz7-xyet
6
vulnerability VCID-n3cs-wjun-vfhe
7
vulnerability VCID-pa95-mtgb-yuf2
8
vulnerability VCID-wzeg-jdcg-tfct
9
vulnerability VCID-z54f-eupv-n7be
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.1
1
url pkg:nuget/Microsoft.AspNetCore.All@2.1.4
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.4
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1gtv-nubh-73a9
1
vulnerability VCID-cja1-29th-9qbf
2
vulnerability VCID-j761-wgke-97d8
3
vulnerability VCID-mrdj-nvz7-xyet
4
vulnerability VCID-n3cs-wjun-vfhe
5
vulnerability VCID-pa95-mtgb-yuf2
6
vulnerability VCID-wzeg-jdcg-tfct
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.4
aliases CVE-2018-8409, GHSA-j378-6mmw-hqfr
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-z54f-eupv-n7be
15
url VCID-zdjb-98e7-6bgn
vulnerability_id VCID-zdjb-98e7-6bgn
summary Microsoft Security Advisory CVE-2018-8292: .NET Core Information Disclosure Vulnerability
references
0
reference_url https://access.redhat.com/errata/RHSA-2018:2902
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:2902
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-8292.json
reference_id
reference_type
scores
0
value 7.4
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-8292.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-8292
reference_id
reference_type
scores
0
value 0.06775
scoring_system epss
scoring_elements 0.91332
published_at 2026-04-18T12:55:00Z
1
value 0.06775
scoring_system epss
scoring_elements 0.91307
published_at 2026-04-13T12:55:00Z
2
value 0.06775
scoring_system epss
scoring_elements 0.91308
published_at 2026-04-12T12:55:00Z
3
value 0.06775
scoring_system epss
scoring_elements 0.91305
published_at 2026-04-11T12:55:00Z
4
value 0.06775
scoring_system epss
scoring_elements 0.9128
published_at 2026-04-07T12:55:00Z
5
value 0.06775
scoring_system epss
scoring_elements 0.91343
published_at 2026-04-24T12:55:00Z
6
value 0.06775
scoring_system epss
scoring_elements 0.91333
published_at 2026-04-21T12:55:00Z
7
value 0.06775
scoring_system epss
scoring_elements 0.91273
published_at 2026-04-04T12:55:00Z
8
value 0.06775
scoring_system epss
scoring_elements 0.91292
published_at 2026-04-08T12:55:00Z
9
value 0.06775
scoring_system epss
scoring_elements 0.91258
published_at 2026-04-01T12:55:00Z
10
value 0.06775
scoring_system epss
scoring_elements 0.91298
published_at 2026-04-09T12:55:00Z
11
value 0.06775
scoring_system epss
scoring_elements 0.91263
published_at 2026-04-02T12:55:00Z
12
value 0.08142
scoring_system epss
scoring_elements 0.92187
published_at 2026-04-26T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-8292
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.9
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://github.com/dotnet/announcements/issues/88
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/dotnet/announcements/issues/88
5
reference_url http://www.securityfocus.com/bid/105548
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://www.securityfocus.com/bid/105548
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1636274
reference_id 1636274
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1636274
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-8292
reference_id CVE-2018-8292
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2018-8292
8
reference_url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8292
reference_id CVE-2018-8292
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8292
9
reference_url https://github.com/advisories/GHSA-7jgj-8wvc-jh57
reference_id GHSA-7jgj-8wvc-jh57
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-7jgj-8wvc-jh57
fixed_packages
0
url pkg:nuget/Microsoft.AspNetCore.All@2.1.1
purl pkg:nuget/Microsoft.AspNetCore.All@2.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1gtv-nubh-73a9
1
vulnerability VCID-aqyy-zs6z-v7ar
2
vulnerability VCID-cja1-29th-9qbf
3
vulnerability VCID-ct2x-rftj-tydp
4
vulnerability VCID-j761-wgke-97d8
5
vulnerability VCID-mrdj-nvz7-xyet
6
vulnerability VCID-n3cs-wjun-vfhe
7
vulnerability VCID-pa95-mtgb-yuf2
8
vulnerability VCID-wzeg-jdcg-tfct
9
vulnerability VCID-z54f-eupv-n7be
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.1
aliases CVE-2018-8292, GHSA-7jgj-8wvc-jh57
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zdjb-98e7-6bgn
Fixing_vulnerabilities
Risk_score10.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.0