CVE-2020-1161

2020-05-2122:53:28

microsoft

www.cve.org

AI Score

7.4

Confidence

High

EPSS

0.001

Percentile

50.4%

JSON

A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka ‘ASP.NET Core Denial of Service Vulnerability’.

CNA Affected

[
  {
    "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.1 - 15.8)",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "unspecified"
      }
    ]
  },
  {
    "product": "Microsoft Visual Studio 2019",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "16.0"
      }
    ]
  },
  {
    "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "unspecified"
      }
    ]
  },
  {
    "product": "Microsoft Visual Studio 2019 version 16.5",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "unspecified"
      }
    ]
  },
  {
    "product": "ASP.NET Core",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "3.1"
      }
    ]
  }
]