CVE-2020-0603
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2020-0603
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-0603.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2020-0603
- Aliases
- Related
- Published
- 2020-01-14T23:15:30Z
- Modified
- 2025-01-15T08:57:11.671782Z
- Severity
-
- 8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
A remote code execution vulnerability exists in ASP.NET Core software when the software fails to handle objects in memory.An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user, aka 'ASP.NET Core Remote Code Execution Vulnerability'.
- References
Affected packages
Git / github.com/dotnet/aspnetcore
Affected ranges
- Type
- GIT
- Repo
- https://github.com/dotnet/aspnetcore
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affectedLast affectedLast affected
Affected versions
1.*
1.0.0
1.0.0-rc2
1.0.0-rc2-final
1.0.1
1.0.3
1.0.4
1.0.5
1.0.7
1.1.0
1.1.0-preview1
1.1.1
1.1.2
1.1.3
1.1.5
2.*
2.0.0
2.0.0-preview1
2.0.0-preview2
2.0.3
2.0.5
2.0.6
2.0.7
2.0.8
2.1.0
2.1.0-preview1
2.1.0-preview2
2.1.0-rc1
2.1.1
2.1.2
2.1.3
2.1.4
2.1.5
2.1.6
2.2.0
2.2.0-preview1
2.2.0-preview2
2.2.0-preview3
v1.*
v1.0.0-alpha2
v1.0.0-alpha3
v1.0.0-beta4
v1.0.0-beta5
v1.0.0-beta6
v1.0.0-beta7
v1.0.0-beta8
v1.0.0-rc1-final
v1.0.0-rc1-update1
v2.*
v2.1.10
v2.1.11
v2.1.12
v2.1.13
v2.1.7
v2.1.8
v2.1.9
v2.2.1
v2.2.2
v2.2.3
v2.2.4
v2.2.5
v2.2.6
v2.2.7
v3.*
v3.0.0
v3.0.0-preview-18579-0056
v3.0.0-preview-19075-0444
v3.0.0-preview3-19153-02
v3.0.0-preview4-19216-03
v3.0.0-preview5-19227-01
v3.0.0-preview6.19307.2
v3.0.0-preview7.19353.9
v3.0.0-preview7.19365.7
v3.0.0-preview8.19405.7
v3.0.0-preview9.19424.4