Lucene search

K

RedosROS-20240503-07

HistoryMay 03, 2024 - 12:00 a.m.

ROS-20240503-07

2024-05-0300:00:00

redos.red-soft.ru

7

microsoft .net software

insufficient input validation

remote attack

denial of service

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

6.6 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

71.3%

A vulnerability in the Microsoft .NET software platform is related to insufficient input validation.
Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service

OSVersionArchitecturePackageVersionFilename
redos7.3x86_64dotnet<= 8.0.104-1UNKNOWN

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

6.6 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

71.3%

Related for ROS-20240503-07

prion1 osv11 redhat13 nessus32 vulnrichment1 mskb3 cve1 nvd1 cvelist1 alpinelinux1 veracode1 ubuntucve1 redhatcve1 mscve1 oraclelinux6 almalinux6 rocky2 openvas1 ubuntu1 kaspersky1 rapid7blog1