7.5
CVE-2023-38180
- EPSS 15.52%
- Veröffentlicht 08.08.2023 19:15:10
- Zuletzt bearbeitet 28.10.2025 14:10:42
- Quelle secure@microsoft.com
- CVE-Watchlists
- Unerledigt
.NET and Visual Studio Denial of Service Vulnerability
.NET and Visual Studio Denial of Service Vulnerability
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Asp.Net Core Version >= 2.1 < 2.1.40
Microsoft ≫ Visual Studio 2022 Version >= 17.2.0 < 17.2.18
Microsoft ≫ Visual Studio 2022 Version >= 17.4.0 < 17.4.10
Microsoft ≫ Visual Studio 2022 Version >= 17.6.0 < 17.6.6
Fedoraproject ≫ Fedora Version37
Fedoraproject ≫ Fedora Version38
09.08.2023: CISA Known Exploited Vulnerabilities (KEV) Catalog
Microsoft .NET Core and Visual Studio Denial-of-Service Vulnerability
SchwachstelleMicrosoft .NET Core and Visual Studio contain an unspecified vulnerability that allows for denial-of-service (DoS).
BeschreibungApply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Erforderliche Maßnahmen| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 15.52% | 0.964 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| secure@microsoft.com | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
CWE-400 Uncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource.
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CL2L4WE5QRT7WEXANYXSKSU43APC5N2V/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NWVZFKTLNMNKPZ755EMRYIA6GHFOWGKY/
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-38180
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-38180