HomePentest-Tools.com Logo

ASP.NET Core Tampering Vulnerability-Nov18 (Windows) CVE-2018-8416

Severity
CVSSv3 Score
6.5
Vulnerability description

ASP.NET Core is prone to a tampering vulnerability.

Risk description

The flaw exists due to an error when .NET Core improperly handles specially crafted files. Successful exploitation will allow an attacker to write arbitrary files and directories to certain locations on a vulnerable system.

Recommendation

Upgrade to ASP.NET Core 2.1.6 or later. Please see the references for more information.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Nov 14, 2018
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available