GHSA-xhfc-gr8f-ffwc

Suggest an improvement
Source
https://github.com/advisories/GHSA-xhfc-gr8f-ffwc
Import Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-xhfc-gr8f-ffwc/GHSA-xhfc-gr8f-ffwc.json
JSON Data
https://api.osv.dev/v1/vulns/GHSA-xhfc-gr8f-ffwc
Aliases
Published
2022-05-24T16:45:53Z
Modified
2024-12-07T05:39:23.087034Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
Denial of service in ASP.NET Core
Details

A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and .Net Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981.

Database specific 
{
    "nvd_published_at": "2019-05-16T19:29:00Z",
    "cwe_ids": [],
    "severity": "HIGH",
    "github_reviewed": true,
    "github_reviewed_at": "2022-07-07T23:26:16Z"
}
References

Affected packages

NuGet / System.Private.Uri

Package

Name
System.Private.Uri
View open source insights on deps.dev
Purl
pkg:nuget/System.Private.Uri

Affected ranges

Type
ECOSYSTEM
Events
Introduced
4.3.0
Fixed
4.3.2

Affected versions

4.*

4.3.0
4.3.1