Vulnerabilities > CVE-2017-8700 - Unspecified vulnerability in Microsoft Asp.Net Core 1.0/1.1/2.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
ASP.NET Core 1.0, 1.1, and 2.0 allow an attacker to bypass Cross-origin Resource Sharing (CORS) configurations and retrieve normally restricted content from a web application, aka "ASP.NET Core Information Disclosure Vulnerability".
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 3 |
The Hacker News
| id | THN:96CCD36932DBF3F5BEFCC18D4EC4E5C2 |
| last seen | 2018-01-27 |
| modified | 2017-11-15 |
| published | 2017-11-14 |
| reporter | Swati Khandelwal |
| source | https://thehackernews.com/2017/11/microsoft-patch-tuesday.html |
| title | Patch Tuesday: Microsoft Releases Update to Fix 53 Vulnerabilities |