{"id":"CVE-2018-0875","details":".NET Core 1.0, .NET Core 1.1, NET Core 2.0 and PowerShell Core 6.0.0 allow a denial of Service vulnerability due to how specially crafted requests are handled, aka \".NET Core Denial of Service Vulnerability\".","aliases":["GHSA-xcvr-qv8h-m7xw"],"modified":"2026-05-30T09:16:39.701014Z","published":"2018-03-14T17:29:00.980Z","references":[{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/103225"},{"type":"ADVISORY","url":"http://www.securitytracker.com/id/1040505"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2018:0522"},{"type":"FIX","url":"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0875"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/dotnet/aspnetcore","events":[{"introduced":"0"},{"last_affected":"93ef04d69d1f1a189e9c342f656e85af50a14bb6"},{"last_affected":"f79e4a22cabfa3c72c5f0e7c8d302a977dba61b2"},{"last_affected":"999787ace6778fae7ddb77178052231d7351f706"}],"database_specific":{"source":"CPE_STRING","extracted_events":[{"introduced":"0"},{"last_affected":"1.0"},{"last_affected":"1.1"},{"last_affected":"2.0"}],"cpe":["cpe:2.3:a:microsoft:asp.net_core:1.0:*:*:*:*:*:*:*","cpe:2.3:a:microsoft:asp.net_core:1.1:*:*:*:*:*:*:*","cpe:2.3:a:microsoft:asp.net_core:2.0:*:*:*:*:*:*:*"]}}],"versions":["2.0.0","2.0.0-preview2","2.0.0-preview1","1.1.3","1.1.2","1.0.5","1.1.1","1.0.4","1.0.3","1.1.0","1.1.0-preview1","1.0.0","1.0.1","1.0.0-rc2-final","1.0.0-rc2","v1.0.0-rc1-update1","v1.0.0-rc1-final","v1.0.0-beta8","v1.0.0-beta7","v1.0.0-beta6","v1.0.0-beta5","v1.0.0-beta4","v1.0.0-alpha3","v1.0.0-alpha2"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-0875.json"}},{"ranges":[{"type":"GIT","repo":"https://github.com/powershell/powershell","events":[{"introduced":"0"},{"last_affected":"2f818615bed15141c062dd185f659ed110d9c6ba"}],"database_specific":{"source":"CPE_STRING","extracted_events":[{"introduced":"0"},{"last_affected":"6.0"}],"cpe":"cpe:2.3:a:microsoft:powershell_core:6.0:*:*:*:*:*:*:*"}}],"versions":["v6.0.0","v6.0.0-rc.2","v6.0.0-rc","v6.0.0-beta.2","v6.0.0-beta.1","v6.0.0-alpha.18","v6.0.0-alpha.17","v6.0.0-alpha.16","v6.0.0-alpha.13","v6.0.0-alpha.12","v6.0.0-alpha.11","v6.0.0-alpha.10","v6.0.0-alpha.9","v6.0.0-alpha.7","v0.6.0","v0.5.0","v0.4.0","v0.3.0","v0.2.0","v0.1.0"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-0875.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}