Denial of service vulnerability exists when .NET and .NET Core improperly process XML documents

GHSA-35hc-x2cw-2j4v · CVE-2018-0765

Published Oct 16, 2018 · Modified Nov 8, 2023

Description

A denial of service vulnerability exists when .NET and .NET Core improperly process XML documents, aka ".NET and .NET Core Denial of Service Vulnerability." This affects Microsoft .NET Framework 2.0, Microsoft .NET Framework 3.0, Microsoft .NET Framework 4.7.1, Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1, Microsoft .NET Framework 4.5.2, Microsoft .NET Framework 4.7/4.7.1, Microsoft .NET Framework 4.6, Microsoft .NET Framework 3.5, Microsoft .NET Framework 3.5.1, Microsoft .NET Framework 4.6/4.6.1/4.6.2, Microsoft .NET Framework 4.6.2/4.7/4.7.1, .NET Core 2.0, Microsoft .NET Framework 4.7.2.

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2018-0765
ADVISORY https://github.com/advisories/GHSA-35hc-x2cw-2j4v
WEB https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0765
WEB http://www.securityfocus.com/bid/104060
WEB http://www.securitytracker.com/id/1040851

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes