High severityNVD Advisory· Published Jul 14, 2020· Updated Aug 4, 2024
CVE-2020-1469
CVE-2020-1469
Description
A denial of service vulnerability exists when the .NET implementation of Bond improperly parses input, aka 'Bond Denial of Service Vulnerability'.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
Bond.Core.CSharpNuGet | >= 3.0.0, < 9.0.1 | 9.0.1 |
Affected products
2- Microsoft/Bond 9.0.1v5Range: unspecified
Patches
Vulnerability mechanics
References
7- github.com/advisories/GHSA-rqrc-8q8f-cp9cghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2020-1469ghsaADVISORY
- github.com/microsoft/bond/commit/3afea822c42dd0095fedb9e7db9ebb99165e7343ghsaWEB
- github.com/microsoft/bond/commit/b0fd4a15a7cae946dd2855122559ca59cc34dbeaghsaWEB
- msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2020-1469ghsaWEB
- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1469ghsax_refsource_MISCWEB
- www.nuget.org/packages/Bond.Core.CSharp/9.0.1ghsaWEB
News mentions
0No linked articles in our index yet.