CVE-2022-21986Allocation of Resources Without Limits or Throttling in Microsoft Visual Studio 2019 Version 16.11

CWE-770Allocation of Resources Without Limits or Throttling5 documents5 sources
Severity
7.5HIGHCNA
No vector
EPSS
1.7%
top 17.61%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
18
Microsoft Visual Studio 2019 Version 16.11Microsoft Visual Studio 2019 Version 16.9Microsoft Visual Studio 2022 Version 17.0+15 more
Timeline
PublishedFeb 9
Latest updateOct 21

Description

.NET Denial of Service Vulnerability .NET Denial of Service Vulnerability

Affected Packages18 packages

CVEListV5microsoft/net_5.05.0.05.0.14
CVEListV5microsoft/net_6.06.0.06.0.2

🔴Vulnerability Details

3
GHSA
.NET Denial of Service Vulnerability2022-10-21
OSV
.NET Denial of Service Vulnerability2022-10-21
CVEList
.NET Denial of Service Vulnerability2022-02-09

📋Vendor Advisories

2
Red Hat
dotnet: ASP.NET Core Krestel HTTP headers pooling denial of service2022-02-08
Microsoft
.NET Denial of Service Vulnerability2022-02-08