Published: 12/08/2021 Updated: 28/12/2023

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Subscribe to Visual Studio 2017

.NET Core and Visual Studio Denial of Service Vulnerability

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft visual studio 2017
microsoft visual studio 2019
microsoft visual studio 2019 8.10
microsoft .net
microsoft .net core
microsoft powershell core

An infinite loop error was found in ASPNET when processing WebSocket frames The exploitation of this issue can cause high CPU resource consumption The highest threat from this vulnerability is to system availability ...

A denial of service vulnerability exists in NET 50 before Runtime 509 and SDK 50206 as well as NET Core 31 before Runtime 3118 and SDK 31118 where NET (Core) server applications providing WebSocket endpoints could be tricked into endlessly looping while trying to read a single WebSocket frame ...

NVD-CWE-noinfo https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26423 https://nvd.nist.gov https://access.redhat.com/security/cve/cve-2021-26423

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2021-26423

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect