CVE-2018-0764: Moderate severity vulnerability that affects System.Security.Cryptography.Xml

October 16, 2018 (updated August 26, 2021)

Microsoft .NET Framework 1.1, 2.0, 3.0, 3.5, 3.5.1, 4, 4.5, 4.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2 and 5.7 and .NET Core 1.0. 1.1 and 2.0 allow a denial of service vulnerability due to the way XML documents are processed, aka “.NET and .NET Core Denial Of Service Vulnerability”. This CVE is unique from CVE-2018-0765.

References

github.com/advisories/GHSA-rr3c-f55v-qhv5
nvd.nist.gov/vuln/detail/CVE-2018-0764

Detect and mitigate CVE-2018-0764 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →