Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
CVE-2019-0545
CVE information
Published
Last Modified
CVSSv2.0 Severity
CVSSv3.1 Severity
Impact Analysis
Description
An information disclosure vulnerability exists in .NET Framework and .NET Core which allows bypassing Cross-origin Resource Sharing (CORS) configurations, aka ".NET Framework Information Disclosure Vulnerability." This affects Microsoft .NET Framework 2.0, Microsoft .NET Framework 3.0, Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2, Microsoft .NET Framework 4.5.2, Microsoft .NET Framework 4.6, Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2, Microsoft .NET Framework 4.7/4.7.1/4.7.2, .NET Core 2.1, Microsoft .NET Framework 4.7.1/4.7.2, Microsoft .NET Framework 3.5, Microsoft .NET Framework 3.5.1, Microsoft .NET Framework 4.6/4.6.1/4.6.2, .NET Core 2.2, Microsoft .NET Framework 4.7.2..
CVSSv2.0 Score
- Severity
- Medium
- Base Score
- 5/10
- Exploit Score
- 10/10
- Access Vector
- Network
- Access Complexity
- Low
- Authentication Required
- None
- Impact Score
- 2.9/10
- Confidentiality Impact
- Partial
- Availability Impact
- None
- Integrity Impact
- None
CVSSv3.1 Score
- Severity
- High
- Base Score
- 7.5/10
- Exploit Score
- 3.9/10
- Access Vector
- Network
- Access Complexity
- Low
- Privileges Required
- None
- Impact Score
- 3.6/10
- Confidentiality Impact
- High
- Availability Impact
- None
- Integrity Impact
- None
- Scope
- Unchanged
- User Interaction
- None
Products Affected
CPE | Affected | Vulnerable | Excluding | Edit |
---|---|---|---|---|
cpe:2.3:a:microsoft:.net_framework:2.0:sp2:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:a:microsoft:.net_framework:3.0:sp2:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:a:microsoft:.net_framework:3.5:*:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:a:microsoft:.net_framework:3.5.1:*:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:* |
No
|
- | ||
cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:itani |
No
|
- | ||
cpe:2.3:a:microsoft:.net_framework:4.5.2:*:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:x64:* |
No
|
- | ||
cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:a:microsoft:.net_framework:4.6:*:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:a:microsoft:.net_framework:4.6.1:*:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:a:microsoft:.net_framework:4.6.2:*:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:o:microsoft:windows_server_2012:*:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:o:microsoft:windows_server:1709:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:o:microsoft:windows_server:1803:*:*:*:*:*:*:* |
No
|
- | ||
cpe:2.3:a:microsoft:.net_framework:4.7:*:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:a:microsoft:.net_framework:4.7.1:*:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:a:microsoft:.net_framework:4.7.2:*:*:*:*:*:*:* |
Yes
|
- | ||
cpe:2.3:o:microsoft:windows_10:1703:*:*:*:*:*:*:* |
No
|
- |