CVE-2019-0757
published 2019-04-09CVE-2019-0757: A tampering vulnerability exists in the NuGet Package Manager for Linux and Mac that could allow an authenticated attacker to modify a NuGet package's folder…
medium6.5CVSS 3.1
AVNACLPRLUINSUCNIHAN
A tampering vulnerability exists in the NuGet Package Manager for Linux and Mac that could allow an authenticated attacker to modify a NuGet package's folder structure, aka 'NuGet Package Manager Tampering Vulnerability'.
Affected
42 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | nuget | — | — |
| microsoft | microsoft_visual_studio | — | — |
| microsoft | mono_framework | — | — |
| microsoft | mono_framework | — | — |
| microsoft | net_core_sdk | — | — |
| microsoft | net_core_sdk | — | — |
| microsoft | net_core_sdk | — | — |
| microsoft | net_core_sdk | — | — |
| microsoft | net_core_sdk | — | — |
| microsoft | net_core_sdk | — | — |
| microsoft | net_core_sdk | — | — |
| microsoft | nuget | — | — |
| microsoft | nuget | — | — |
| microsoft | nuget | — | — |
| microsoft | nuget | — | — |
| microsoft | nuget | — | — |
| microsoft | nuget | — | — |
| microsoft | nuget | — | — |
| mono-project | mono_framework | — | — |
| mono-project | mono_framework | — | — |
| msrc | mono_framework_version_5.18.0.223 | — | — |
| msrc | mono_framework_version_5.20.0 | — | — |
| msrc | net_core_sdk_1.1_on_net_core_1.0 | — | — |
| msrc | net_core_sdk_1.1_on_net_core_1.1 | — | — |
| msrc | net_core_sdk_2.1.500_on_net_core_2.1 | — | — |