Skip to main content

Asp Net Model View Controller

5 CVEs product

Monthly

CVE-2018-8171 NuGet HIGH PATCH This Week

A Security Feature Bypass vulnerability exists in ASP.NET when the number of incorrect login attempts is not validated, aka "ASP.NET Security Feature Bypass Vulnerability." This affects ASP.NET,. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Authentication Bypass Asp Net Core Asp Net Model View Controller Asp Net Webpages
NVD
CVSS 3.0
7.5
EPSS
9.8%
CVE-2017-0256 NuGet MEDIUM PATCH This Month

A spoofing vulnerability exists when the ASP.NET Core fails to properly sanitize web requests. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Asp Net Model View Controller Microsoft Aspnetcore Mvc Abstractions Microsoft Aspnetcore Mvc Apiexplorer Microsoft Aspnetcore Mvc Cors +14
NVD GitHub
CVSS 3.0
5.3
EPSS
4.3%
CVE-2017-0249 NuGet HIGH PATCH This Week

An elevation of privilege vulnerability exists when the ASP.NET Core fails to properly sanitize web requests. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Asp Net Model View Controller Microsoft Aspnetcore Mvc Abstractions Microsoft Aspnetcore Mvc Apiexplorer Microsoft Aspnetcore Mvc Cors +14
NVD GitHub
CVSS 3.0
7.3
EPSS
5.8%
CVE-2017-0247 NuGet HIGH POC PATCH THREAT Act Now

A denial of service vulnerability exists when the ASP.NET Core fails to properly validate web requests. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 11.1%.

Denial Of Service Microsoft Asp Net Model View Controller Microsoft Aspnetcore Mvc Abstractions Microsoft Aspnetcore Mvc Apiexplorer +15
NVD GitHub
CVSS 3.0
7.5
EPSS
11.1%
CVE-2014-4075 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in System.Web.Mvc.dll in Microsoft ASP.NET Model View Controller (MVC) 2.0 through 5.1 allows remote attackers to inject arbitrary web script or HTML via a. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Epss exploitation probability 18.6% and no vendor patch available.

XSS Microsoft Asp Net Model View Controller
NVD
CVSS 2.0
4.3
EPSS
18.6%
EPSS 10% CVSS 7.5
HIGH PATCH This Week

A Security Feature Bypass vulnerability exists in ASP.NET when the number of incorrect login attempts is not validated, aka "ASP.NET Security Feature Bypass Vulnerability." This affects ASP.NET,. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Authentication Bypass Asp Net Core Asp Net Model View Controller +1
NVD
EPSS 4% CVSS 5.3
MEDIUM PATCH This Month

A spoofing vulnerability exists when the ASP.NET Core fails to properly sanitize web requests. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Asp Net Model View Controller Microsoft Aspnetcore Mvc Abstractions +16
NVD GitHub
EPSS 6% CVSS 7.3
HIGH PATCH This Week

An elevation of privilege vulnerability exists when the ASP.NET Core fails to properly sanitize web requests. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Asp Net Model View Controller Microsoft Aspnetcore Mvc Abstractions +16
NVD GitHub
EPSS 11% CVSS 7.5
HIGH POC PATCH THREAT Act Now

A denial of service vulnerability exists when the ASP.NET Core fails to properly validate web requests. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 11.1%.

Denial Of Service Microsoft Asp Net Model View Controller +17
NVD GitHub
EPSS 19% CVSS 4.3
MEDIUM This Month

Cross-site scripting (XSS) vulnerability in System.Web.Mvc.dll in Microsoft ASP.NET Model View Controller (MVC) 2.0 through 5.1 allows remote attackers to inject arbitrary web script or HTML via a. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Epss exploitation probability 18.6% and no vendor patch available.

XSS Microsoft Asp Net Model View Controller
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy