CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
Percentile
90.0%
Vendor | Product | Version | CPE |
---|---|---|---|
microsoft | aspnetcore.app.runtime.win-x86 | * | cpe:2.3:a:microsoft:aspnetcore.app.runtime.win-x86:*:*:*:*:*:*:*:* |
microsoft | aspnetcore.app.runtime.win-x64 | * | cpe:2.3:a:microsoft:aspnetcore.app.runtime.win-x64:*:*:*:*:*:*:*:* |
microsoft | aspnetcore.app.runtime.win-arm | * | cpe:2.3:a:microsoft:aspnetcore.app.runtime.win-arm:*:*:*:*:*:*:*:* |
microsoft | aspnetcore.app.runtime.osx-x64 | * | cpe:2.3:a:microsoft:aspnetcore.app.runtime.osx-x64:*:*:*:*:*:*:*:* |
microsoft | aspnetcore.app.runtime.linux-x64 | * | cpe:2.3:a:microsoft:aspnetcore.app.runtime.linux-x64:*:*:*:*:*:*:*:* |
microsoft | aspnetcore.app.runtime.linux-musl-x64 | * | cpe:2.3:a:microsoft:aspnetcore.app.runtime.linux-musl-x64:*:*:*:*:*:*:*:* |
microsoft | aspnetcore.app.runtime.linux-musl-arm64 | * | cpe:2.3:a:microsoft:aspnetcore.app.runtime.linux-musl-arm64:*:*:*:*:*:*:*:* |
microsoft | aspnetcore.app.runtime.linux-arm64 | * | cpe:2.3:a:microsoft:aspnetcore.app.runtime.linux-arm64:*:*:*:*:*:*:*:* |
microsoft | aspnetcore.app.runtime.linux-arm | * | cpe:2.3:a:microsoft:aspnetcore.app.runtime.linux-arm:*:*:*:*:*:*:*:* |
microsoft | aspnetcore.http.connections | * | cpe:2.3:a:microsoft:aspnetcore.http.connections:*:*:*:*:*:*:*:* |
access.redhat.com/errata/RHSA-2020:0130
access.redhat.com/errata/RHSA-2020:0134
github.com/advisories/GHSA-655q-9gvg-q4cm
github.com/aspnet/Announcements/issues/403
github.com/github/advisory-database/issues/302
nvd.nist.gov/vuln/detail/CVE-2020-0603
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0603
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
Percentile
90.0%