Search for packages
Package details: pkg:nuget/Microsoft.AspNetCore.All@3.0
purl pkg:nuget/Microsoft.AspNetCore.All@3.0
Tags Ghost
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 4.5
Vulnerabilities affecting this package (3)
Vulnerability Summary Fixed by
VCID-63fu-pwhf-aaaf
Aliases:
CVE-2020-0602
GHSA-23cv-jh4v-vffm
Improper Input Validation A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka 'ASP.NET Core Denial of Service Vulnerability'.
3.1.1
Affected by 0 other vulnerabilities.
VCID-c413-2csk-aaam
Aliases:
CVE-2020-0603
GHSA-655q-9gvg-q4cm
Out-of-bounds Write A remote code execution vulnerability exists in ASP.NET Core software when the software fails to handle objects in memory.An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user, aka 'ASP.NET Core Remote Code Execution Vulnerability'.
3.1.1
Affected by 0 other vulnerabilities.
VCID-rt1q-nt91-aaar
Aliases:
CVE-2019-1302
GHSA-xr8f-59pp-rxxh
Improper Input Validation An elevation of privilege vulnerability exists when a ASP.NET Core web application, created using vulnerable project templates, fails to properly sanitize web requests, aka 'ASP.NET Core Elevation Of Privilege Vulnerability'. There are no reported fixed by versions.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version