Open redirect in ASP.NET Core

GHSA-prrf-397v-83xh · CVE-2019-1075

Published May 24, 2022 · Modified Nov 8, 2023

Description

A spoofing vulnerability exists in ASP.NET Core that could lead to an open redirect, aka 'ASP.NET Core Spoofing Vulnerability'.

6.1 / 10

MEDIUM CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Fix 2.1.12, 2.2.6

Introduced 2.1.0, 2.2.0

18 affected versions

2.1.02.1.12.1.102.1.112.1.22.1.32.1.42.1.52.1.62.1.72.1.82.1.92.2.02.2.12.2.22.2.32.2.42.2.5

Fix 2.1.12, 2.2.6

Introduced 2.1.0, 2.2.0

18 affected versions

2.1.02.1.12.1.102.1.112.1.22.1.32.1.42.1.52.1.62.1.72.1.82.1.92.2.02.2.12.2.22.2.32.2.42.2.5

Fix 2.1.12, 2.2.6

Introduced 2.1.0, 2.2.0

3 affected versions

2.1.02.1.12.2.0

Fix 2.2.6

Introduced 2.2.0

3 affected versions

2.2.02.2.12.2.2

Ready to move

Free, no credit card | First findings in minutes