GHSA-xhfc-gr8f-ffwc

Source

https://github.com/advisories/GHSA-xhfc-gr8f-ffwc

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-xhfc-gr8f-ffwc/GHSA-xhfc-gr8f-ffwc.json

JSON Data

https://api.osv.dev/v1/vulns/GHSA-xhfc-gr8f-ffwc

Aliases

CVE-2019-0980

Published

2022-05-24T16:45:53Z

Modified

2023-11-08T04:00:34.925981Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

Denial of service in ASP.NET Core

Details

A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and .Net Core Denial of Service Vulnerability'. This CVE ID is unique from CVE-2019-0820, CVE-2019-0981.

References

Affected packages

NuGet / System.Private.Uri

Package

Name: System.Private.Uri; View open source insights on deps.dev
Purl: pkg:nuget/System.Private.Uri

Affected ranges

Type: ECOSYSTEM
Events: Introduced

4.3.0

Fixed

4.3.2

Affected versions

4.*

4.3.0

4.3.1