The remote Windows host is affected by multiple ASP.NET Core runtime vulnerabilities.
The remote Windows host has an installation of ASP.NET Core and .NET Core SDK with a version less than 2.1.4. Therefore, the host is affected by multiple vulnerabilities: - An elevation of privilege vulnerability due to improper sanitization of web requests (CVE-2018-0784) - A cross-site request forgery that could allow an attacker to change the recovery codes of a victims account. (CVE-2018-0785)
Update to .NET Core SDK version 2.1.4 or later and refer to vendor advisory for any template-generated ASP.NET Core web applications.