CVE-2020-0603

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2020-0603

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-0603.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2020-0603

Aliases

Related

Published

2020-01-14T23:15:30Z

Modified

2024-10-12T05:43:02.047103Z

Severity

8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

A remote code execution vulnerability exists in ASP.NET Core software when the software fails to handle objects in memory.An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user, aka 'ASP.NET Core Remote Code Execution Vulnerability'.

References

Affected packages

Git / github.com/dotnet/aspnetcore

Affected ranges

Type: GIT
Repo: https://github.com/dotnet/aspnetcore
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

03019875e4eab279a99ba3ba5ee75fb0e4935ce6

Last affected

ac66280fe9024bdd686354e342fcdfb3409597f7

Last affected

aee5e4080331553ea9dfb7fb388b6d72f715bf6a

Affected versions

2.*

2.1.0

2.1.0-preview1

2.1.0-preview2

2.1.0-rc1