CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-8585

Microsoft .NET Framework 4.6, 4.6.1, 4.6.2, and 4.7 allow an attacker to send specially crafted requests to a .NET web application, resulting in denial of service, aka .NET Denial of Service Vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.186

EPSS Ranking 94.9%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

http://www.securityfocus.com/bid/99432
http://www.securitytracker.com/id/1038864
https://access.redhat.com/errata/RHSA-2017:3248
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2017-8585
http://www.securityfocus.com/bid/99432
http://www.securitytracker.com/id/1038864
https://access.redhat.com/errata/RHSA-2017:3248
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2017-8585

Products affected by CVE-2017-8585

Microsoft » .net Framework » Version: 4.6

cpe:2.3:a:microsoft:.net_framework:4.6
Microsoft » .net Framework » Version: 4.6.1

cpe:2.3:a:microsoft:.net_framework:4.6.1
Microsoft » .net Framework » Version: 4.6.2

cpe:2.3:a:microsoft:.net_framework:4.6.2
Microsoft » .net Framework » Version: 4.7

cpe:2.3:a:microsoft:.net_framework:4.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-8585

Products

Pricing

Contact Us