CVE-2018-0765

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2018-0765

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-0765.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2018-0765

Aliases

GHSA-35hc-x2cw-2j4v

Published

2018-05-09T19:29:00Z

Modified

2024-09-03T02:00:47.894691Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

A denial of service vulnerability exists when .NET and .NET Core improperly process XML documents, aka ".NET and .NET Core Denial of Service Vulnerability." This affects Microsoft .NET Framework 2.0, Microsoft .NET Framework 3.0, Microsoft .NET Framework 4.7.1, Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1, Microsoft .NET Framework 4.5.2, Microsoft .NET Framework 4.7/4.7.1, Microsoft .NET Framework 4.6, Microsoft .NET Framework 3.5, Microsoft .NET Framework 3.5.1, Microsoft .NET Framework 4.6/4.6.1/4.6.2, Microsoft .NET Framework 4.6.2/4.7/4.7.1, .NET Core 2.0, Microsoft .NET Framework 4.7.2.

References

Affected packages

Git / github.com/dotnet/core

Affected ranges

Type: GIT
Repo: https://github.com/dotnet/core
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

db80d23845503f74f69f84c3d525d9e3ea1e4811

Last affected

f3c64ec2d713c053b20bcf90e962cd7fb161370c

Affected versions

v1.*

v1.0.0

v1.0.0-rc1

v1.0.0-rc2

v1.0.1

v1.0.10

v1.0.11

v1.0.12

v1.0.13

v1.0.14

v1.0.15

v1.0.16

v1.0.2

v1.0.3

v1.0.4

v1.0.5

v1.0.7

v1.0.8

v1.0.9

v1.1

v1.1.0

v1.1.0-preview1

v1.1.1

v1.1.10

v1.1.11

v1.1.12

v1.1.13

v1.1.2

v1.1.4

v1.1.5

v1.1.6

v1.1.7

v1.1.8

v1.1.9

v2.*

v2.0.0

v2.0.0-preview1

v2.0.0-preview2

v2.0.3

v2.0.4

v2.0.5

v2.0.6

v2.0.7

v2.0.7-2

v2.0.9

v2.1-preview1

v2.1-preview2

v2.1-rc1

v2.1.0

v2.1.1

v2.1.11

v2.1.12

v2.1.13

v2.1.14

v2.1.2

v2.1.3

v2.1.4

v2.1.5

v2.1.6

v2.1.7

v2.1.8

v2.1.9

v2.2.0

v2.2.0-preview1

v2.2.0-preview2

v2.2.0-preview3

v2.2.1

v2.2.2

v2.2.3

v2.2.5

v2.2.6

v2.2.7

v2.2.8

v3.*

v3.0.0

v3.0.0-preview1

v3.0.0-preview2

v3.0.0-preview3

v3.0.0-preview4

v3.0.0-preview5

v3.0.0-preview6

v3.0.0-preview7

v3.0.0-preview8

v3.0.0-preview9

v3.0.0-rc1

v3.0.1

v3.0.2

v3.1.0

v3.1.0-preview1

v3.1.0-preview2

v3.1.0-preview3

v3.1.1