| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| CVE-2017-11883 | ASP.NET Core Denial Of Service Vulnerability | ASP.NET Core | Important | 15-11-2017 |
Technical Information
Brief overview of the risk:
A denial of service vulnerability exists when ASP.NET Core improperly handles web requests. An attacker who successfully exploited this vulnerability could cause a denial of service against a ASP.NET Core web application. The vulnerability can be exploited remotely, without authentication.
Detailed Information on the risk:
A remote unauthenticated attacker could exploit this vulnerability by issuing specially crafted requests to the .NET Core application.
Further information on this exploit is available at : CVE-2017-11883
Affected Software
ASP.NET Core 2.0
ASP.NET Core 1.1
ASP.NET Core 1.0