Description

An elevation of privilege vulnerability exists when the ASP.NET Core fails to properly sanitize web requests.

Remediation

References

CVE-2017-0249

Related Vulnerabilities

WordPress Plugin Forminator-Contact Form, Payment Form & Custom Form Builder Arbitrary File Upload (1.28.1)

Artifactory Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2016-10036)

OpenSSL Resource Management Errors Vulnerability (CVE-2011-4619)

WordPress 3.8.x Multiple Vulnerabilities (3.8 - 3.8.39)

WordPress Plugin OAuth client Single Sign On for WordPress (OAuth 2.0 SSO) Security Bypass (3.0.3)

Severity

High

Classification

CVE-2017-0249 CWE-20 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Tags

Missing Update Known Vulnerabilities