CVE Vulnerabilities

CVE-2018-0764

Published: Jan 10, 2018 | Modified: Nov 21, 2024
CVSS 3.x
7.5
HIGH
Source:
NVD
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
5.3 MODERATE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Ubuntu

Microsoft .NET Framework 1.1, 2.0, 3.0, 3.5, 3.5.1, 4, 4.5, 4.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2 and 5.7 and .NET Core 1.0. 1.1 and 2.0 allow a denial of service vulnerability due to the way XML documents are processed, aka .NET and .NET Core Denial Of Service Vulnerability. This CVE is unique from CVE-2018-0765.

Affected Software

Name Vendor Start Version End Version
.net_core Microsoft 1.0 (including) 1.0 (including)
.net_core Microsoft 1.1 (including) 1.1 (including)
.net_core Microsoft 2.0 (including) 2.0 (including)
Powershell_core Microsoft 6.0 (including) 6.0 (including)
.NET Core on Red Hat Enterprise Linux RedHat rh-dotnet20-dotnet-0:2.0.5-1.el7 *
.NET Core on Red Hat Enterprise Linux RedHat rh-dotnetcore10-dotnetcore-0:1.0.9-1.el7 *
.NET Core on Red Hat Enterprise Linux RedHat rh-dotnetcore11-dotnetcore-0:1.1.6-1.el7 *
.NET Core on Red Hat Enterprise Linux RedHat rh-dotnet20-dotnet-0:2.0.5-1.el7 *
.NET Core on Red Hat Enterprise Linux RedHat rh-dotnetcore10-dotnetcore-0:1.0.9-1.el7 *
.NET Core on Red Hat Enterprise Linux RedHat rh-dotnetcore11-dotnetcore-0:1.1.6-1.el7 *
.NET Core on Red Hat Enterprise Linux RedHat rh-dotnet20-dotnet-0:2.0.5-1.el7 *
.NET Core on Red Hat Enterprise Linux RedHat rh-dotnetcore10-dotnetcore-0:1.0.9-1.el7 *
.NET Core on Red Hat Enterprise Linux RedHat rh-dotnetcore11-dotnetcore-0:1.1.6-1.el7 *

References