vulnerability
Microsoft CVE-2019-0545: .NET Framework Information Disclosure Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:P/I:N/A:N) | Jan 8, 2019 | Jan 8, 2019 | Nov 18, 2021 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:P/I:N/A:N)
Published
Jan 8, 2019
Added
Jan 8, 2019
Modified
Nov 18, 2021
Description
An information disclosure vulnerability exists in .NET Framework and .NET Core which allows bypassing Cross-origin Resource Sharing (CORS) configurations.
An attacker who successfully exploited the vulnerability could retrieve content, that is normally restricted, from a web application.
The security update addresses the vulnerability by enforcing CORS configuration to prevent its bypass.
Solutions
msft-kb4480056-0961f314-5521-4c7b-86b4-b2af12a0df17msft-kb4480056-d061a900-bf43-4ed6-9de4-3e14a74afecbmsft-kb4480056-df134eb7-29d7-4679-8970-aef738a64f65msft-kb4480961-4a2a5643-5e82-4339-be74-66b10a9d4eecmsft-kb4480961-84fbaa81-9ebf-428e-b18a-7480e4b70fb1microsoft-windows-windows_server_2016-1607-kb4480961msft-kb4480962-18f8720a-e358-4431-8ec7-1738dfe8162fmsft-kb4480962-7727f4a3-1b2d-4e0c-abf1-f0a8c2005e9dmsft-kb4480966-0f4e1a46-e19e-4791-af14-f2559f7e4e7cmsft-kb4480966-f4207677-23a0-4a38-97d8-a2435d809a1dmsft-kb4480973-6e2d3ec0-a14d-4347-a8c3-fa37bf45fe5amsft-kb4480973-cddccaec-10fd-460c-8e1a-01d7a000ea81msft-kb4480978-95561fee-7f78-41af-b2e9-c77d7fc09d13msft-kb4480978-c68a2d65-ad1f-41b3-ad82-689617db1f2d
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.