VDB
CVE-2019-1083
CVE-2019-1083
PUBLISHED
CVSS 7.5 HIGH
A denial of service vulnerability exists when Microsoft Common Object Runtime Library improperly handles web requests, aka '.NET Denial of Service Vulnerability'.
EPSS 10.56% · 93.4th percentile
Risk Scores
CVSS 3.0
7.5
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
10.56%
93.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Microsoft .NET Framework 4.8 on Windows 10 Version 1607 for 32-bit Systems | unspecified |
| Microsoft | Microsoft .NET Framework 4.8 on Windows Server 2012 | unspecified |
| Microsoft | Microsoft .NET Framework 4.8 on Windows 7 for 32-bit Systems Service Pack 1 | * |
| Microsoft | Microsoft .NET Framework 3.5 AND 4.8 on Windows Server, version 1903 (Server Core installation) | 1903 |
| Microsoft | Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2 | Windows Server 2012 R2 (Server Core installation), Windows Server 2012 R2, Windows 8.1 for 32-bit systems |
| Microsoft | Microsoft .NET Framework 4.8 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 | unspecified |
| Microsoft | Microsoft .NET Framework 3.5 AND 4.8 on Windows 10 Version 1903 for x64-based Systems | unspecified |
| Microsoft | Microsoft .NET Framework 4.8 on Windows Server 2012 (Server Core installation) | unspecified |
| Microsoft | Microsoft .NET Framework 3.5 AND 4.8 on Windows 10 Version 1809 for 32-bit Systems | unspecified |
| Microsoft | Microsoft .NET Framework 4.8 on Windows 10 Version 1803 for x64-based Systems | unspecified |
| Microsoft | Microsoft .NET Framework 4.8 on Windows RT 8.1 | unspecified |
| Microsoft | Microsoft .NET Framework 4.5.2 | Windows Server 2008 for 32-bit Systems Service Pack 2, *, Windows 7 for 32-bit Systems Service Pack 1 |
| Microsoft | Microsoft .NET Framework 3.5 AND 4.7.2 on Windows 10 Version 1809 for 32-bit Systems | unspecified |
| microsoft | .net_framework | 3.5, 4.8, 4.6 |
| Microsoft | Microsoft .NET Framework 3.5 AND 4.8 on Windows 10 Version 1903 for 32-bit Systems | unspecified |
| Microsoft | Microsoft .NET Framework 3.5 AND 4.8 on Windows Server 2019 | * |
| Microsoft | Microsoft .NET Framework 3.5 AND 4.8 on Windows Server 2019 (Server Core installation) | * |
| Microsoft | Microsoft .NET Framework 4.8 on Windows Server 2012 R2 | unspecified |
| Microsoft | Microsoft .NET Framework 4.8 on Windows Server 2016 (Server Core installation) | unspecified |
| Microsoft | Microsoft .NET Framework 4.8 on Windows 10 Version 1709 for x64-based Systems | unspecified |
…and 22 more
Exploit Intelligence
- stevenseeley/HowCVE-2019-1083Works (github-poc)
- stevenseeley/HowCVE-2019-1083Works (github-poc)
- stevenseeley/HowCVE-2019-1083Works (github-poc)
- stevenseeley/HowCVE-2019-1083Works (github-poc)
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1083 (circl)
Timeline
- Jul 10, 2019 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Feb 4, 2022 EPSS Score
- May 1, 2022 EPSS Score
- Jun 23, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Nov 6, 2022 EPSS Score
- Jan 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score