Vulnerability Details : CVE-2022-38013
.NET Core and Visual Studio Denial of Service Vulnerability
Vulnerability category: Denial of service
Products affected by CVE-2022-38013
- cpe:2.3:a:microsoft:.net_core:3.1:-:*:*:*:*:*:*
- cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:visual_studio_2019:16.11:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:.net:6.0.0:-:*:*:*:*:*:*
- cpe:2.3:a:microsoft:visual_studio_2022:17.0:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:visual_studio_2022:17.2:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:visual_studio_2022:17.3:*:*:*:*:mac:*:*
- cpe:2.3:a:microsoft:visual_studio_2022:17.3:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2022-38013
0.07%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 32 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2022-38013
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
3.9
|
3.6
|
Microsoft Corporation |
References for CVE-2022-38013
-
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7HCV4TQGOTOFHO5ETRKGFKAGYV2YAUVE/
[SECURITY] Fedora 36 Update: dotnet3.1-3.1.423-1.fc36 - package-announce - Fedora Mailing-Lists
-
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/K4K5YL7USOKIR3O2DUKBZMYPWXYPDKXG/
[SECURITY] Fedora 35 Update: dotnet6.0-6.0.109-1.fc35 - package-announce - Fedora Mailing-Lists
-
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JA6F4CDKLI3MALV6UK3P2DR5AGCLTT7Y/
[SECURITY] Fedora 36 Update: dotnet6.0-6.0.109-1.fc36 - package-announce - Fedora Mailing-ListsMailing List;Third Party Advisory
-
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-38013
CVE-2022-38013 - Security Update Guide - Microsoft - .NET Core and Visual Studio Denial of Service VulnerabilityPatch;Vendor Advisory
-
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38013
CVE-2022-38013 - Security Update Guide - Microsoft - .NET Core and Visual Studio Denial of Service Vulnerability
-
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/K4K5YL7USOKIR3O2DUKBZMYPWXYPDKXG/
[SECURITY] Fedora 35 Update: dotnet6.0-6.0.109-1.fc35 - package-announce - Fedora Mailing-ListsMailing List;Third Party Advisory
-
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2CUL3Z7MEED7RFQZVGQL2MTKSFFZKAAY/
[SECURITY] Fedora 37 Update: dotnet6.0-6.0.109-1.fc37 - package-announce - Fedora Mailing-Lists
-
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WL334CKOHA6BQQSYJW365HIWJ4IOE45M/
[SECURITY] Fedora 35 Update: dotnet3.1-3.1.423-1.fc35 - package-announce - Fedora Mailing-ListsMailing List;Third Party Advisory
-
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7HCV4TQGOTOFHO5ETRKGFKAGYV2YAUVE/
[SECURITY] Fedora 36 Update: dotnet3.1-3.1.423-1.fc36 - package-announce - Fedora Mailing-ListsMailing List
-
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2CUL3Z7MEED7RFQZVGQL2MTKSFFZKAAY/
[SECURITY] Fedora 37 Update: dotnet6.0-6.0.109-1.fc37 - package-announce - Fedora Mailing-ListsMailing List;Third Party Advisory
-
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JA6F4CDKLI3MALV6UK3P2DR5AGCLTT7Y/
[SECURITY] Fedora 36 Update: dotnet6.0-6.0.109-1.fc36 - package-announce - Fedora Mailing-Lists
-
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WL334CKOHA6BQQSYJW365HIWJ4IOE45M/
[SECURITY] Fedora 35 Update: dotnet3.1-3.1.423-1.fc35 - package-announce - Fedora Mailing-Lists
Jump to