Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2019-0757

Опубликовано: 12 мар. 2019
Источник: redhat
CVSS3: 7.8
EPSS Низкий

Описание

A tampering vulnerability exists in the NuGet Package Manager for Linux and Mac that could allow an authenticated attacker to modify a NuGet package's folder structure, aka 'NuGet Package Manager Tampering Vulnerability'.

A flaw was found in dotnet. A tampering vulnerability exists in NuGet software when executed in a Linux or Mac environment. An attacker who successfully exploits the vulnerability could run arbitrary code in the context of the current user. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

Ссылки на источники

Дополнительная информация

Статус:

Important
Дефект:
CWE-732
https://bugzilla.redhat.com/show_bug.cgi?id=1685475dotnet: NuGet Tampering Vulnerability

EPSS

Процентиль: 92%
0.08047
Низкий

7.8 High

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2019-0757

CVSS3: 6.5
ubuntu
больше 6 лет назад

A tampering vulnerability exists in the NuGet Package Manager for Linux and Mac that could allow an authenticated attacker to modify a NuGet package's folder structure, aka 'NuGet Package Manager Tampering Vulnerability'.

nvd логотип

CVE-2019-0757

CVSS3: 6.5
nvd
больше 6 лет назад

A tampering vulnerability exists in the NuGet Package Manager for Linux and Mac that could allow an authenticated attacker to modify a NuGet package's folder structure, aka 'NuGet Package Manager Tampering Vulnerability'.

msrc логотип

CVE-2019-0757

msrc
больше 6 лет назад

NuGet Package Manager Tampering Vulnerability

debian логотип

CVE-2019-0757

CVSS3: 6.5
debian
больше 6 лет назад

A tampering vulnerability exists in the NuGet Package Manager for Linu ...

github логотип

GHSA-c2wg-p84q-4x76

CVSS3: 6.5
github
больше 3 лет назад

A tampering vulnerability exists in the NuGet Package Manager for Linux and Mac that could allow an authenticated attacker to modify a NuGet package's folder structure, aka 'NuGet Package Manager Tampering Vulnerability'.

EPSS

Процентиль: 92%
0.08047
Низкий

7.8 High

CVSS3