CVE-2017-11883
HIGH
7,5
Source: [email protected]
Attack Vector: network
Attack Complexity: low
Privileges Required: none
User Interaction: none
Scope: unchanged
Confidentiality: none
Integrity: none
Availability: high
MEDIUM
5,0
Source: [email protected]
Access Vector: network
Access Complexity: low
Authentication: none
Confidentiality: none
Integrity: none
Availability: partial
Description
AI Translation Available
.NET Core 1.0, 1.1, and 2.0 allow an unauthenticated attacker to remotely cause a denial of service attack against a .NET Core web application by improperly handling web requests, aka '.NET CORE Denial Of Service Vulnerability'.
EPSS (Exploit Prediction Scoring System)
Trend Analysis
EPSS (Exploit Prediction Scoring System)
Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.
EPSS Score
0,3115
Percentile
1,0th
Updated
EPSS Score Trend (Last 75 Days)
Application
Aspnetcore by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:a:microsoft:aspnetcore:1.1:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Aspnetcore by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:a:microsoft:aspnetcore:1.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Application
Aspnetcore by Microsoft
CPE Identifier
View Detailed Analysis
cpe:2.3:a:microsoft:aspnetcore:2.0:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-118…
http://www.securityfocus.com/bid/101835
http://www.securitytracker.com/id/1039793
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-118…
http://www.securityfocus.com/bid/101835
http://www.securitytracker.com/id/1039793