CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
50.4%
A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests, aka â.NET Core & .NET Framework Denial of Service Vulnerabilityâ.
Vendor | Product | Version | CPE |
---|---|---|---|
microsoft | .net | 5.0 | cpe:2.3:a:microsoft:.net:5.0:preview1:*:*:*:*:*:* |
microsoft | .net | 5.0 | cpe:2.3:a:microsoft:.net:5.0:preview2:*:*:*:*:*:* |
microsoft | .net | 5.0 | cpe:2.3:a:microsoft:.net:5.0:preview3:*:*:*:*:*:* |
microsoft | .net_core | * | cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:* |
microsoft | windows_server_2008 | - | cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:* |
microsoft | windows_server_2008 | - | cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x86:* |
microsoft | .net_framework | 2.0 | cpe:2.3:a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:* |
microsoft | .net_framework | 3.0 | cpe:2.3:a:microsoft:.net_framework:3.0:sp2:*:*:*:*:*:* |
microsoft | .net_framework | 4.6 | cpe:2.3:a:microsoft:.net_framework:4.6:*:*:*:*:*:*:* |
microsoft | .net_framework | 3.5 | cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:* |
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
50.4%