CVE-2019-0864

CWE-400Uncontrolled Resource Consumption6 documents6 sources
Severity
5.5MEDIUM
EPSS
0.1%
top 66.89%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
44
Microsoft Microsoft .net Framework 2.0Microsoft Microsoft .net Framework 3.0Microsoft Microsoft .net Framework 3.5+41 more
Timeline
PublishedMay 16
Latest updateMay 24

Description

A denial of service vulnerability exists when .NET Framework improperly handles objects in heap memory, aka '.NET Framework Denial of Service Vulnerability'.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages44 packages

NVDmicrosoft/.net_framework12 versions+11

Patches

Patch: portal.msrc.microsoft.comPatch: portal.msrc.microsoft.com

🔴Vulnerability Details

2
GHSA
GHSA-prjj-r5f6-p9xf: A denial of service vulnerability exists when2022-05-24
CVEList
CVE-2019-0864: A denial of service vulnerability exists when2019-05-16

📋Vendor Advisories

2
Red Hat
dotnet: improper handling of objects in heap memory causing denial of service2019-05-14
Microsoft
.NET Framework Denial of Service Vulnerability2019-05-14

💬Community

1
Bugzilla
CVE-2019-0864 dotnet: improper handling of objects in heap memory causing denial of service2019-05-21