Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:nuget/Microsoft.AspNetCore.All@2.2.0-preview1-35029

Type nuget

Namespace

Name Microsoft.AspNetCore.All

Version 2.2.0-preview1-35029

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url

VCID-c94t-hevg-xych

vulnerability_id

VCID-c94t-hevg-xych

summary

Uncontrolled Resource Consumption
A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka "ASP.NET Core Denial of Service Vulnerability." This affects ASP.NET Core, ASP.NET Core This CVE ID is unique from CVE-2019-0564.

references

reference_url	https://access.redhat.com/errata/RHSA-2019:0040
reference_id
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0040

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-0548.json

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-0548.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-0548

reference_id

reference_type

scores

value	0.08905
scoring_system	epss
scoring_elements	0.92718
published_at	2026-06-08T12:55:00Z

value	0.08905
scoring_system	epss
scoring_elements	0.9273
published_at	2026-06-05T12:55:00Z

value	0.08905
scoring_system	epss
scoring_elements	0.92725
published_at	2026-06-06T12:55:00Z

value	0.08905
scoring_system	epss
scoring_elements	0.9272
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-0548

reference_url	http://www.securityfocus.com/bid/106410
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/106410

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1660636
reference_id	1660636
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1660636

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2019-0548
reference_id	CVE-2019-0548
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2019-0548

reference_url	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0548
reference_id	CVE-2019-0548
reference_type
scores
url	https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0548

fixed_packages

aliases

CVE-2019-0548

risk_score

2.6

exploitability

0.5

weighted_severity

5.3

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-c94t-hevg-xych

url VCID-gq4f-w38t-ckhr

vulnerability_id VCID-gq4f-w38t-ckhr

summary

Improper Input Validation
A security feature bypass vulnerability exists in the way Microsoft ASP.NET Core parses encoded cookie names. The ASP.NET Core cookie parser decodes entire cookie strings which could allow a malicious attacker to set a second cookie with the name being percent encoded. The security update addresses the vulnerability by fixing the way the ASP.NET Core cookie parser handles encoded names., aka 'Microsoft ASP.NET Core Security Feature Bypass Vulnerability'.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1045.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1045.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-1045

reference_id

reference_type

scores

value	0.20401
scoring_system	epss
scoring_elements	0.9566
published_at	2026-06-05T12:55:00Z

value	0.20401
scoring_system	epss
scoring_elements	0.95666
published_at	2026-06-08T12:55:00Z

value	0.20401
scoring_system	epss
scoring_elements	0.95664
published_at	2026-06-06T12:55:00Z

value	0.20401
scoring_system	epss
scoring_elements	0.95654
published_at	2026-06-04T12:55:00Z

value	0.20401
scoring_system	epss
scoring_elements	0.95665
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-1045

reference_url

https://github.com/dotnet/announcements/issues/165

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/dotnet/announcements/issues/165

reference_url

https://github.com/dotnet/aspnetcore/issues/25701

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/dotnet/aspnetcore/issues/25701

reference_url

https://github.com/dotnet/aspnetcore/issues/25701#issuecomment-689434477

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/dotnet/aspnetcore/issues/25701#issuecomment-689434477

reference_url

https://github.com/dotnet/aspnetcore/pull/24264

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/dotnet/aspnetcore/pull/24264

reference_url

https://github.com/dotnet/core/blob/main/release-notes/3.1/3.1.8/3.1.8.md#changes-in-318

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:P/RL:O/RC:C

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-10T18:21:43Z/

url

https://github.com/dotnet/core/blob/main/release-notes/3.1/3.1.8/3.1.8.md#changes-in-318

reference_url

https://github.com/github/advisory-database/issues/302

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/github/advisory-database/issues/302

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5LN2FUVBSVPGK7AU3NMLO3YR6CGONQPB

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5LN2FUVBSVPGK7AU3NMLO3YR6CGONQPB

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ASICXQXS4M7MTAF6SGQMCLCA63DLCUT3

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ASICXQXS4M7MTAF6SGQMCLCA63DLCUT3

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5LN2FUVBSVPGK7AU3NMLO3YR6CGONQPB

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5LN2FUVBSVPGK7AU3NMLO3YR6CGONQPB

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5LN2FUVBSVPGK7AU3NMLO3YR6CGONQPB/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5LN2FUVBSVPGK7AU3NMLO3YR6CGONQPB/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ASICXQXS4M7MTAF6SGQMCLCA63DLCUT3

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ASICXQXS4M7MTAF6SGQMCLCA63DLCUT3

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ASICXQXS4M7MTAF6SGQMCLCA63DLCUT3/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ASICXQXS4M7MTAF6SGQMCLCA63DLCUT3/

reference_url

https://security.snyk.io/vuln/SNYK-RHEL8-DOTNET-1439600

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:P/RL:O/RC:C

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-10T18:21:43Z/

url

https://security.snyk.io/vuln/SNYK-RHEL8-DOTNET-1439600

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1873451
reference_id	1873451
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1873451

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5LN2FUVBSVPGK7AU3NMLO3YR6CGONQPB/

reference_id

5LN2FUVBSVPGK7AU3NMLO3YR6CGONQPB

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:P/RL:O/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-10T18:21:43Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5LN2FUVBSVPGK7AU3NMLO3YR6CGONQPB/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ASICXQXS4M7MTAF6SGQMCLCA63DLCUT3/

reference_id

ASICXQXS4M7MTAF6SGQMCLCA63DLCUT3

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:P/RL:O/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-10T18:21:43Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ASICXQXS4M7MTAF6SGQMCLCA63DLCUT3/

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:microsoft:asp.net_core:2.1:::::::
reference_id	cpe:2.3:a:microsoft:asp.net_core:2.1:::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:microsoft:asp.net_core:2.1:::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:microsoft:asp.net_core:3.1:::::::*
reference_id	cpe:2.3:a:microsoft:asp.net_core:3.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:microsoft:asp.net_core:3.1:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2020-1045

reference_id

CVE-2020-1045

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2020-1045

reference_url

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1045

reference_id

CVE-2020-1045

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:P/RL:O/RC:C

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-10T18:21:43Z/

url

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1045

reference_url

https://github.com/advisories/GHSA-hxrm-9w7p-39cc

reference_id

GHSA-hxrm-9w7p-39cc

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-hxrm-9w7p-39cc

reference_url	https://access.redhat.com/errata/RHSA-2020:3697
reference_id	RHSA-2020:3697
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:3697

reference_url

https://access.redhat.com/errata/RHSA-2020:3699

reference_id

RHSA-2020:3699

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:P/RL:O/RC:C

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-10T18:21:43Z/

url

https://access.redhat.com/errata/RHSA-2020:3699

fixed_packages

url	pkg:nuget/Microsoft.AspNetCore.All@3.1.8
purl	pkg:nuget/Microsoft.AspNetCore.All@3.1.8
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@3.1.8

aliases CVE-2020-1045, GHSA-hxrm-9w7p-39cc

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gq4f-w38t-ckhr

url

VCID-n5gj-1syh-fkeu

vulnerability_id

VCID-n5gj-1syh-fkeu

summary

Microsoft Security Advisory CVE-2019-1302: ASP.NET Core Elevation Of Privilege Vulnerability

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-1302

reference_id

reference_type

scores

value	0.09908
scoring_system	epss
scoring_elements	0.93158
published_at	2026-06-08T12:55:00Z

value	0.09908
scoring_system	epss
scoring_elements	0.93152
published_at	2026-06-04T12:55:00Z

value	0.09908
scoring_system	epss
scoring_elements	0.93163
published_at	2026-06-06T12:55:00Z

value	0.09908
scoring_system	epss
scoring_elements	0.9316
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-1302

reference_url

https://github.com/aspnet/Announcements/issues/384

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/aspnet/Announcements/issues/384

reference_url

https://github.com/github/advisory-database/issues/302

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/github/advisory-database/issues/302

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2019-1302

reference_id

CVE-2019-1302

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2019-1302

reference_url

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1302

reference_id

CVE-2019-1302

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1302

reference_url

https://github.com/advisories/GHSA-xr8f-59pp-rxxh

reference_id

GHSA-xr8f-59pp-rxxh

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-xr8f-59pp-rxxh

fixed_packages

aliases

CVE-2019-1302, GHSA-xr8f-59pp-rxxh

risk_score

3.1

exploitability

0.5

weighted_severity

6.2

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-n5gj-1syh-fkeu

url VCID-vrkf-8nhe-7uc6

vulnerability_id VCID-vrkf-8nhe-7uc6

summary Microsoft Security Advisory CVE-2019-0982: ASP.NET Core Denial of Service Vulnerability

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-0982

reference_id

reference_type

scores

value	0.07927
scoring_system	epss
scoring_elements	0.9219
published_at	2026-06-04T12:55:00Z

value	0.07927
scoring_system	epss
scoring_elements	0.92199
published_at	2026-06-07T12:55:00Z

value	0.07927
scoring_system	epss
scoring_elements	0.922
published_at	2026-06-08T12:55:00Z

value	0.07927
scoring_system	epss
scoring_elements	0.92203
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-0982

reference_url

https://github.com/aspnet/Announcements/issues/359

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/aspnet/Announcements/issues/359

reference_url

https://github.com/github/advisory-database/issues/302

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/github/advisory-database/issues/302

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2019-0982

reference_id

CVE-2019-0982

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2019-0982

reference_url

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0982

reference_id

CVE-2019-0982

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0982

reference_url

https://github.com/advisories/GHSA-4jxx-4qxw-prxm

reference_id

GHSA-4jxx-4qxw-prxm

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-4jxx-4qxw-prxm

fixed_packages

url pkg:nuget/Microsoft.AspNetCore.All@2.2.1

purl pkg:nuget/Microsoft.AspNetCore.All@2.2.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-gq4f-w38t-ckhr

vulnerability	VCID-n5gj-1syh-fkeu

vulnerability	VCID-xgtm-9d66-rugc

vulnerability	VCID-zy59-m69r-dueh

resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.2.1

aliases CVE-2019-0982, GHSA-4jxx-4qxw-prxm

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vrkf-8nhe-7uc6

url VCID-zy59-m69r-dueh

vulnerability_id VCID-zy59-m69r-dueh

summary

Improper Input Validation
A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka 'ASP.NET Core Denial of Service Vulnerability'.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1597.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1597.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-1597

reference_id

reference_type

scores

value	0.07555
scoring_system	epss
scoring_elements	0.91971
published_at	2026-06-04T12:55:00Z

value	0.07555
scoring_system	epss
scoring_elements	0.91982
published_at	2026-06-07T12:55:00Z

value	0.07555
scoring_system	epss
scoring_elements	0.91985
published_at	2026-06-06T12:55:00Z

value	0.07555
scoring_system	epss
scoring_elements	0.91983
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-1597

reference_url

https://github.com/dotnet/announcements/issues/162

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/dotnet/announcements/issues/162

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WH5FQ5VT3JGHXFXOETHCTBWJUIAPGHHT

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WH5FQ5VT3JGHXFXOETHCTBWJUIAPGHHT

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WH5FQ5VT3JGHXFXOETHCTBWJUIAPGHHT/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WH5FQ5VT3JGHXFXOETHCTBWJUIAPGHHT/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZW4CBI26KSO3PRL3HLVVISXPPOYUHSXO

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZW4CBI26KSO3PRL3HLVVISXPPOYUHSXO

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZW4CBI26KSO3PRL3HLVVISXPPOYUHSXO/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZW4CBI26KSO3PRL3HLVVISXPPOYUHSXO/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WH5FQ5VT3JGHXFXOETHCTBWJUIAPGHHT

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WH5FQ5VT3JGHXFXOETHCTBWJUIAPGHHT

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WH5FQ5VT3JGHXFXOETHCTBWJUIAPGHHT/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WH5FQ5VT3JGHXFXOETHCTBWJUIAPGHHT/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZW4CBI26KSO3PRL3HLVVISXPPOYUHSXO

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZW4CBI26KSO3PRL3HLVVISXPPOYUHSXO

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZW4CBI26KSO3PRL3HLVVISXPPOYUHSXO/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZW4CBI26KSO3PRL3HLVVISXPPOYUHSXO/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1861110
reference_id	1861110
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1861110

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2020-1597

reference_id

CVE-2020-1597

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2020-1597

reference_url

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1597

reference_id

CVE-2020-1597

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1597

reference_url

https://github.com/advisories/GHSA-f8qx-mjcq-wfgx

reference_id

GHSA-f8qx-mjcq-wfgx

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-f8qx-mjcq-wfgx

reference_url	https://access.redhat.com/errata/RHSA-2020:3421
reference_id	RHSA-2020:3421
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:3421

reference_url	https://access.redhat.com/errata/RHSA-2020:3422
reference_id	RHSA-2020:3422
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:3422

fixed_packages

url	pkg:nuget/Microsoft.AspNetCore.All@3.1.7
purl	pkg:nuget/Microsoft.AspNetCore.All@3.1.7
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@3.1.7

aliases CVE-2020-1597, GHSA-f8qx-mjcq-wfgx

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zy59-m69r-dueh

Fixing_vulnerabilities

url VCID-xgtm-9d66-rugc

vulnerability_id VCID-xgtm-9d66-rugc

summary Microsoft Security Advisory CVE-2018-8269: Denial of Service Vulnerability in OData

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-8269

reference_id

reference_type

scores

value	0.24647
scoring_system	epss
scoring_elements	0.96236
published_at	2026-06-04T12:55:00Z

value	0.29428
scoring_system	epss
scoring_elements	0.96704
published_at	2026-06-08T12:55:00Z

value	0.29428
scoring_system	epss
scoring_elements	0.96705
published_at	2026-06-07T12:55:00Z

value	0.29428
scoring_system	epss
scoring_elements	0.96701
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-8269

reference_url

https://github.com/aspnet/Announcements/issues/385

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/aspnet/Announcements/issues/385

reference_url	https://github.com/dotnet/aspnetcore/issues/13860
reference_id
reference_type
scores
url	https://github.com/dotnet/aspnetcore/issues/13860

reference_url

https://github.com/github/advisory-database/issues/302

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/github/advisory-database/issues/302

reference_url

https://www.exploit-db.com/exploits/46101

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.exploit-db.com/exploits/46101

reference_url	https://www.exploit-db.com/exploits/46101/
reference_id
reference_type
scores
url	https://www.exploit-db.com/exploits/46101/

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/46101.rb
reference_id	CVE-2018-8269
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/46101.rb

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2018-8269

reference_id

CVE-2018-8269

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2018-8269

reference_url

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8269

reference_id

CVE-2018-8269

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8269

reference_url

https://github.com/advisories/GHSA-mv2r-q4g5-j8q5

reference_id

GHSA-mv2r-q4g5-j8q5

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/advisories/GHSA-mv2r-q4g5-j8q5

fixed_packages

url pkg:nuget/Microsoft.AspNetCore.All@2.1.13

purl pkg:nuget/Microsoft.AspNetCore.All@2.1.13

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-gq4f-w38t-ckhr

vulnerability	VCID-n5gj-1syh-fkeu

vulnerability	VCID-zy59-m69r-dueh

resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.1.13

url pkg:nuget/Microsoft.AspNetCore.All@2.2.0-preview1-35029

purl pkg:nuget/Microsoft.AspNetCore.All@2.2.0-preview1-35029

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-c94t-hevg-xych

vulnerability	VCID-gq4f-w38t-ckhr

vulnerability	VCID-n5gj-1syh-fkeu

vulnerability	VCID-vrkf-8nhe-7uc6

vulnerability	VCID-zy59-m69r-dueh

resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.2.0-preview1-35029

url pkg:nuget/Microsoft.AspNetCore.All@2.2.7

purl pkg:nuget/Microsoft.AspNetCore.All@2.2.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-gq4f-w38t-ckhr

vulnerability	VCID-n5gj-1syh-fkeu

vulnerability	VCID-zy59-m69r-dueh

resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.2.7

aliases CVE-2018-8269, GHSA-mv2r-q4g5-j8q5

risk_score 10.0

exploitability 2.0

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xgtm-9d66-rugc

Risk_score 4.0

Resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.All@2.2.0-preview1-35029

Package Instance