WEB APPLICATION VULNERABILITIES Standard & Premium

ASP.NET MVC Improper Input Validation Vulnerability (CVE-2017-0249)

Description

An elevation of privilege vulnerability exists when the ASP.NET Core fails to properly sanitize web requests.

Remediation

References

Related Vulnerabilities

Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-4194)

Oracle Application Server CVE-2007-0280 Vulnerability (CVE-2007-0280)

MySQL CVE-2023-22038 Vulnerability (CVE-2023-22038)

WordPress Plugin WordPress Download Manager Arbitrary File Upload (2.8.97)

Oracle JRE CVE-2022-21305 Vulnerability (CVE-2022-21305)

Severity

High

Classification

CVE-2017-0249 CWE-20 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

Tags

Missing Update Known Vulnerabilities