Количество 4
Количество 4
CVE-2020-1476
An elevation of privilege vulnerability exists when ASP.NET or .NET web applications running on IIS improperly allow access to cached files. An attacker who successfully exploited this vulnerability could gain access to restricted files. To exploit this vulnerability, an attacker would need to send a specially crafted request to an affected server. The update addresses the vulnerability by changing how ASP.NET and .NET handle requests.
CVE-2020-1476
ASP.NET and .NET Elevation of Privilege Vulnerability
GHSA-8m4h-93rx-x9x3
An elevation of privilege vulnerability exists when ASP.NET or .NET web applications running on IIS improperly allow access to cached files, aka 'ASP.NET and .NET Elevation of Privilege Vulnerability'.
BDU:2020-04120
Уязвимость программной платформы Microsoft .NET Framework, связанная с небезопасным управлением привилегиями, позволяющая нарушителю выполнить произвольный код
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-1476 An elevation of privilege vulnerability exists when ASP.NET or .NET web applications running on IIS improperly allow access to cached files. An attacker who successfully exploited this vulnerability could gain access to restricted files. To exploit this vulnerability, an attacker would need to send a specially crafted request to an affected server. The update addresses the vulnerability by changing how ASP.NET and .NET handle requests. | CVSS3: 5.5 | 1% Низкий | больше 5 лет назад |
 | CVE-2020-1476 ASP.NET and .NET Elevation of Privilege Vulnerability | 1% Низкий | больше 5 лет назад | |
| GHSA-8m4h-93rx-x9x3 An elevation of privilege vulnerability exists when ASP.NET or .NET web applications running on IIS improperly allow access to cached files, aka 'ASP.NET and .NET Elevation of Privilege Vulnerability'. | CVSS3: 5.5 | 1% Низкий | больше 3 лет назад |
 | BDU:2020-04120 Уязвимость программной платформы Microsoft .NET Framework, связанная с небезопасным управлением привилегиями, позволяющая нарушителю выполнить произвольный код | CVSS3: 5.5 | 1% Низкий | больше 5 лет назад |
Уязвимостей на страницу