Shodan
Vulnerabilities
Vulnerable Software
Microsoft:  >> .net Core  Security Vulnerabilities
CVE-2021-26423
.NET Core and Visual Studio Denial of Service Vulnerability
CVSS Score
7.5
EPSS Score
0.019
Published
2021-08-12
CVE-2021-31957
ASP.NET Core Denial of Service Vulnerability
CVSS Score
5.9
EPSS Score
0.051
Published
2021-06-08
CVE-2021-31204
.NET and Visual Studio Elevation of Privilege Vulnerability
CVSS Score
7.3
EPSS Score
0.087
Published
2021-05-11
CVE-2021-24112
.NET Core Remote Code Execution Vulnerability
CVSS Score
8.1
EPSS Score
0.005
Published
2021-02-25
CVE-2021-26701
.NET Core Remote Code Execution Vulnerability
CVSS Score
8.1
EPSS Score
0.01
Published
2021-02-25
CVE-2021-1721
.NET Core and Visual Studio Denial of Service Vulnerability
CVSS Score
6.5
EPSS Score
0.048
Published
2021-02-25
CVE-2020-8927
A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a "one-shot" decompression request to a script can trigger a crash, which happens when copying over chunks of data larger than 2 GiB. It is recommended to update your Brotli library to 1.0.8 or later. If one cannot update, we recommend to use the "streaming" API as opposed to the "one-shot" API, and impose chunk size limits.
CVSS Score
5.3
EPSS Score
0.004
Published
2020-09-15
CVE-2020-1147
Known exploited
A remote code execution vulnerability exists in .NET Framework, Microsoft SharePoint, and Visual Studio when the software fails to check the source markup of XML file input, aka '.NET Framework, SharePoint Server, and Visual Studio Remote Code Execution Vulnerability'.
CVSS Score
7.8
EPSS Score
0.928
Published
2020-07-14
CVE-2020-1108
A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests, aka '.NET Core & .NET Framework Denial of Service Vulnerability'.
CVSS Score
7.5
EPSS Score
0.017
Published
2020-05-21
CVE-2020-0605
A remote code execution vulnerability exists in .NET software when the software fails to check the source markup of a file.An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user, aka '.NET Framework Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0606.
CVSS Score
8.8
EPSS Score
0.426
Published
2020-01-14


Products
Pricing
Contact Us

Shodan ® - All rights reserved