CVE-2020-1045

Опубликовано: 11 сент. 2020

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Средний

Описание

A security feature bypass vulnerability exists in the way Microsoft ASP.NET Core parses encoded cookie names.

The ASP.NET Core cookie parser decodes entire cookie strings which could allow a malicious attacker to set a second cookie with the name being percent encoded.

The security update addresses the vulnerability by fixing the way the ASP.NET Core cookie parser handles encoded names.

Ссылки

https://access.redhat.com/errata/RHSA-2020:3699
Third Party Advisory
https://github.com/dotnet/core/blob/main/release-notes/3.1/3.1.8/3.1.8.md#changes-in-318
Release Notes
Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5LN2FUVBSVPGK7AU3NMLO3YR6CGONQPB/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ASICXQXS4M7MTAF6SGQMCLCA63DLCUT3/
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1045
Patch
Vendor Advisory
https://security.snyk.io/vuln/SNYK-RHEL8-DOTNET-1439600
Third Party Advisory
https://access.redhat.com/errata/RHSA-2020:3699
Third Party Advisory
https://github.com/dotnet/core/blob/main/release-notes/3.1/3.1.8/3.1.8.md#changes-in-318
Release Notes
Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5LN2FUVBSVPGK7AU3NMLO3YR6CGONQPB/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ASICXQXS4M7MTAF6SGQMCLCA63DLCUT3/
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1045
Patch
Vendor Advisory
https://security.snyk.io/vuln/SNYK-RHEL8-DOTNET-1439600
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:microsoft:asp.net_core:*:*:*:*:*:*:*:*

Версия от 2.1 (включая) до 2.1.21 (включая)

cpe:2.3:a:microsoft:asp.net_core:*:*:*:*:*:*:*:*

Версия от 3.1 (включая) до 3.1.8 (исключая)

Конфигурация 2

Одно из

cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*

cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*

Конфигурация 3

Одно из

cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_aus:8.2:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_aus:8.4:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_aus:8.6:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_eus:8.2:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_eus:8.4:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_eus:8.6:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_tus:8.2:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_tus:8.4:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_tus:8.6:*:*:*:*:*:*:*

EPSS

Процентиль: 95%

0.20523

Средний

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

CVE-2020-1045

CVSS3: 7.5

redhat

больше 5 лет назад

A security feature bypass vulnerability exists in the way Microsoft ASP.NET Core parses encoded cookie names. The ASP.NET Core cookie parser decodes entire cookie strings which could allow a malicious attacker to set a second cookie with the name being percent encoded. The security update addresses the vulnerability by fixing the way the ASP.NET Core cookie parser handles encoded names.

CVE-2020-1045

CVSS3: 7.5

msrc

больше 5 лет назад

Microsoft ASP.NET Core Security Feature Bypass Vulnerability

CVE-2020-1045

CVSS3: 7.5

debian

больше 5 лет назад

A security feature bypass vulnerability exists in the way Microsoft ...

GHSA-hxrm-9w7p-39cc

CVSS3: 7.5

github

больше 3 лет назад

Cookie parsing failure

ELSA-2020-3699

oracle-oval

больше 5 лет назад

ELSA-2020-3699: .NET Core 3.1 security and bugfix update (IMPORTANT)

EPSS

Процентиль: 95%

0.20523

Средний

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo