8.8CVSS
7.6AI Score
0.0004EPSS
5.5CVSS
6AI Score
0.0004EPSS
7.5CVSS
7.3AI Score
0.002EPSS
A security feature bypass vulnerability exists in the way Microsoft ASP.NET Core parses encoded cookie names. The ASP.NET Core cookie parser decodes entire cookie strings which could allow a malicious attacker to set a second cookie with the name being percent encoded. The security update...
7.5CVSS
7.2AI Score
0.002EPSS
A denial of service vulnerability exists when ASP.NET Core improperly handles web requests. An attacker who successfully exploited this vulnerability could cause a denial of service against an ASP.NET Core web application. The vulnerability can be exploited remotely, without authentication. A...
7.5CVSS
7.2AI Score
0.013EPSS