Sep 2019:
CVE-2019-1301 Published on September 11, 2019
A denial of service vulnerability exists when .NET Core improperly handles web requests, aka '.NET Core Denial of Service Vulnerability'.
Products Associated with CVE-2019-1301
stack.watch emails you whenever new vulnerabilities are published in Microsoft .NET Core or Microsoft Powershell Core. Just hit a watch button to start following.
Affected Versions
Microsoft .NET Core:- Version 2.1 is affected.
- Version 2.2 is affected.
Vulnerable Packages
The following package name and versions may be associated with CVE-2019-1301
| Package Manager | Vulnerable Package | Versions | Fixed In |
|---|---|---|---|
| nuget | System.Management.Automation | >= 6.2.0, < 6.2.3 | 6.2.3 |
| nuget | System.Management.Automation | < 6.1.6 | 6.1.6 |
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.