CVE-2019-1302
published 2019-09-11CVE-2019-1302: An elevation of privilege vulnerability exists when a ASP.NET Core web application, created using vulnerable project templates, fails to properly sanitize web…
high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
An elevation of privilege vulnerability exists when a ASP.NET Core web application, created using vulnerable project templates, fails to properly sanitize web requests, aka 'ASP.NET Core Elevation Of Privilege Vulnerability'.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | asp.net_core | — | — |
| microsoft | asp.net_core | — | — |
| microsoft | asp.net_core | — | — |
| msrc | asp.net_core_2.1 | — | — |
| msrc | asp.net_core_2.2 | — | — |
| msrc | asp.net_core_3.0 | — | — |