Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:nuget/Microsoft.AspNetCore.Mvc.Cors@1.1.1

Type nuget

Namespace

Name Microsoft.AspNetCore.Mvc.Cors

Version 1.1.1

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 1.1.5

Latest_non_vulnerable_version 1.1.5

Affected_by_vulnerabilities

url VCID-ju3g-r5sj-4ueq

vulnerability_id VCID-ju3g-r5sj-4ueq

summary Microsoft Security Advisory CVE-2017-8700: CORS bypass can enable Information Disclosure

references

reference_url	https://github.com/aspnet/Announcements/issues/279
reference_id
reference_type
scores
url	https://github.com/aspnet/Announcements/issues/279

fixed_packages

url	pkg:nuget/Microsoft.AspNetCore.Mvc.Cors@1.1.5
purl	pkg:nuget/Microsoft.AspNetCore.Mvc.Cors@1.1.5
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Cors@1.1.5

aliases CVE-2017-8700

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ju3g-r5sj-4ueq

Fixing_vulnerabilities

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Microsoft.AspNetCore.Mvc.Cors@1.1.1

Package Instance