CVE Database · CVE-2015-2526
CVSS v3.1
N/A
EPSS
23.87%
Published
Sep 8, 2015
Modified
May 6, 2026
Public PoC / Exploit (1)
All weaponized →Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.
Description
Microsoft .NET Framework 4.5, 4.5.1, 4.5.2, and 4.6 allows remote attackers to cause a denial of service to an ASP.NET web site via crafted requests, aka "MVC Denial of Service Vulnerability."
Weaknesses (CWE)
Affected Products (4)
References (6)
