Every CVE whose affected-product data names Microsoft .net Core, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (32)
CVE-2020-0605 — CVSS 8.8 (high): A remote code execution vulnerability exists in .NET software when the software fails to check the source markup of a file.An attacker who…
CVE-2020-0606 — CVSS 8.8 (high): A remote code execution vulnerability exists in .NET software when the software fails to check the source markup of a file.An attacker who…
CVE-2019-0980 — CVSS 7.5 (high): A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and .Net Core…
CVE-2019-0981 — CVSS 7.5 (high): A denial of service vulnerability exists when .NET Framework or .NET Core improperly handle web requests, aka '.Net Framework and .Net Core…
CVE-2019-1301 — CVSS 7.5 (high): A denial of service vulnerability exists when .NET Core improperly handles web requests, aka '.NET Core Denial of Service Vulnerability'.
CVE-2020-1108 — CVSS 7.5 (high): A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests, aka '.NET Core & .NET Framework…
CVE-2018-0764 — CVSS 7.5 (high): Microsoft .NET Framework 1.1, 2.0, 3.0, 3.5, 3.5.1, 4, 4.5, 4.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2 and 5.7 and .NET Core 1.0. 1.1 and 2.0 allow a…
CVE-2018-0765 — CVSS 7.5 (high): A denial of service vulnerability exists when .NET and .NET Core improperly process XML documents, aka ".NET and .NET Core Denial of…
CVE-2018-0786 — CVSS 7.5 (high): Microsoft .NET Framework 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, .NET Core 1.0 and 2.0, and PowerShell Core…
CVE-2018-8409 — CVSS 7.5 (high): A denial of service vulnerability exists when System.IO.Pipelines improperly handles requests, aka "System.IO.Pipelines Denial of Service."…
CVE-2019-0545 — CVSS 7.5 (high): An information disclosure vulnerability exists in .NET Framework and .NET Core which allows bypassing Cross-origin Resource Sharing (CORS)…
CVE-2019-0820 — CVSS 7.5 (high): A denial of service vulnerability exists when .NET Framework and .NET Core improperly process RegEx strings, aka '.NET Framework and .NET…
CVE-2019-0657 — CVSS 5.9 (medium): A vulnerability exists in certain .Net Framework API's and Visual Studio in the way they parse URL's, aka '.NET Framework and Visual Studio…
CVE-2018-8356 — CVSS 5.5 (medium): A security feature bypass vulnerability exists when Microsoft .NET Framework components do not correctly validate certificates, aka ".NET…
CVE-2020-8927 — CVSS 5.3 (medium): A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a "one-shot"…