CVE-2017-11883

Summary

.NET Core 1.0, 1.1, and 2.0 allow an unauthenticated attacker to remotely cause a denial of service attack against a .NET Core web application by improperly handling web requests, aka ".NET CORE Denial Of Service Vulnerability".

Affected Software

VendorProductVersion RangeStatus
Microsoft CorporationASP.NETASP.NET Core 1.0, ASP.NET Core 1.1, ASP.NET Core 2.0affected

Weaknesses

  • Denial of Service

ADP Enrichment

CVE Program Container

Additional References

References