CVE-2018-0875: .NET Core Denial of Service Vulnerability

May 13, 2022 (updated October 25, 2022)

.NET Core 1.0, .NET Core 1.1, NET Core 2.0 and PowerShell Core 6.0.0 allow a denial of Service vulnerability due to how specially crafted requests are handled, aka “.NET Core Denial of Service Vulnerability”.

References

www.securityfocus.com/bid/103225
www.securitytracker.com/id/1040505
access.redhat.com/errata/RHSA-2018:0522
github.com/advisories/GHSA-xcvr-qv8h-m7xw
github.com/dotnet/announcements/issues/62
nvd.nist.gov/vuln/detail/CVE-2018-0875
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0875

Code Behaviors & Features

Detect and mitigate CVE-2018-0875 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →