VulnerableCode Package Details - pkg:nuget/Microsoft.AspNetCore.All@1.1.0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:nuget/Microsoft.AspNetCore.All@1.1.0

Essentials
History (2)

purl	pkg:nuget/Microsoft.AspNetCore.All@1.1.0
Tags	Ghost

Next non-vulnerable version	2.1.30
Latest non-vulnerable version	2.1.30
Risk	4.0

Vulnerabilities affecting this package (2)

Vulnerability	Summary	Fixed by
VCID-bmf7-rsbm-3fb1 Aliases: CVE-2017-8700 GHSA-3rp6-rjw4-cq39	Microsoft Security Advisory CVE-2017-8700: CORS bypass can enable Information Disclosure	2.0.3 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-stea-61x4-xua6 Aliases: CVE-2018-0875 GHSA-xcvr-qv8h-m7xw	Uncontrolled Resource Consumption .NET Core, .NET Core, NET Core and PowerShell Core allow a denial of Service vulnerability due to how specially crafted requests are handled, aka ".NET Core Denial of Service Vulnerability".	2.0.0-preview1-final Affected by 5 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2.0.3 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-bmf7-rsbm-3fb1
Aliases:
CVE-2017-8700
GHSA-3rp6-rjw4-cq39

Microsoft Security Advisory CVE-2017-8700: CORS bypass can enable Information Disclosure

2.0.3
Affected by 3 other vulnerabilities.

VCID-stea-61x4-xua6
Aliases:
CVE-2018-0875
GHSA-xcvr-qv8h-m7xw

Uncontrolled Resource Consumption .NET Core, .NET Core, NET Core and PowerShell Core allow a denial of Service vulnerability due to how specially crafted requests are handled, aka ".NET Core Denial of Service Vulnerability".

2.0.0-preview1-final
Affected by 5 other vulnerabilities.

2.0.3
Affected by 3 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T12:47:37.375012+00:00	GitLab Importer	Affected by	VCID-stea-61x4-xua6	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/Microsoft.AspNetCore.All/CVE-2018-0875.yml	38.0.0
2026-04-01T12:47:29.185407+00:00	GitLab Importer	Affected by	VCID-bmf7-rsbm-3fb1	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/Microsoft.AspNetCore.All/CVE-2017-8700.yml	38.0.0