Login Sign Up

CVE-2020-1597

7.5 HIGH
Denial of Service

📋 TL;DR

CVE-2020-1597 is a denial of service vulnerability in ASP.NET Core where improperly handled web requests allow remote unauthenticated attackers to crash applications. This affects ASP.NET Core web applications running vulnerable versions. The vulnerability is exploitable remotely without authentication.

💻 Affected Systems

Products:
  • ASP.NET Core
Versions: ASP.NET Core 2.1, 3.1 (specific patch versions required)
Operating Systems: Windows, Linux, macOS
Default Config Vulnerable: ⚠️ Yes
Notes: All ASP.NET Core web applications using affected versions are vulnerable regardless of configuration.

📦 What is this software?

Asp.net Core by Microsoft

View all CVEs affecting Asp.net Core →

Asp.net Core by Microsoft

View all CVEs affecting Asp.net Core →

Fedora by Fedoraproject

View all CVEs affecting Fedora →

Fedora by Fedoraproject

View all CVEs affecting Fedora →

Visual Studio 2017 by Microsoft

View all CVEs affecting Visual Studio 2017 →

Visual Studio 2019 by Microsoft

View all CVEs affecting Visual Studio 2019 →

Visual Studio 2019 by Microsoft

View all CVEs affecting Visual Studio 2019 →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete application unavailability due to service crashes, affecting all users and potentially disrupting business operations.

🟠

Likely Case

Intermittent service disruptions or degraded performance from targeted DoS attacks.

🟢

If Mitigated

Minimal impact with proper rate limiting, WAF filtering, and updated infrastructure.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Microsoft advisory confirms remote unauthenticated exploitation is possible with specially crafted requests.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: ASP.NET Core 2.1.21, 3.1.7 or later

Vendor Advisory: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1597

Restart Required: Yes

Instructions:

1. Update ASP.NET Core runtime and SDK to patched versions. 2. Update application dependencies. 3. Rebuild and redeploy applications. 4. Restart affected services.

🔧 Temporary Workarounds

Web Application Firewall Filtering

all

Configure WAF rules to block suspicious request patterns that might trigger the vulnerability.

Rate Limiting

all

Implement request rate limiting to reduce impact of DoS attempts.

🧯 If You Can't Patch

  • Implement strict network segmentation to limit exposure to trusted sources only.
  • Deploy additional monitoring and alerting for application crashes or performance degradation.

🔍 How to Verify

Check if Vulnerable:

Check ASP.NET Core runtime version: dotnet --info | findstr 'Version'

Check Version:

dotnet --info

Verify Fix Applied:

Verify version is 2.1.21+ or 3.1.7+ and no crashes occur under normal load.

📡 Detection & Monitoring

Log Indicators:

  • Unexpected application crashes
  • High error rates in application logs
  • Abnormal request patterns

Network Indicators:

  • Spike in HTTP requests to ASP.NET endpoints
  • Unusual traffic patterns from single sources

SIEM Query:

source="aspnet_logs" AND (event_type="crash" OR error_count > threshold)

📊 Metadata

CVE ID: CVE-2020-1597
CVSS v3 Score: 7.5 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Published: August 17, 2020
Last Updated: February 23, 2026

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON