ID |
CVE-2019-0976
|
Summary |
A tampering vulnerability exists in the NuGet Package Manager for Linux and Mac that could allow an authenticated attacker to modify contents of the intermediate build folder (by default "obj"), aka 'NuGet Package Manager Tampering Vulnerability'. |
References |
|
Vulnerable Configurations |
-
cpe:2.3:a:microsoft:nuget:5.0.2:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:nuget:5.0.2:*:*:*:*:*:*:*
-
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
-
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
|
CVSS |
Base: | 2.1 (as of 18-04-2022 - 14:26) |
Impact: | |
Exploitability: | |
|
CWE |
NVD-CWE-noinfo |
CAPEC |
|
Access |
Vector | Complexity | Authentication |
LOCAL |
LOW |
NONE |
|
Impact |
Confidentiality | Integrity | Availability |
NONE |
PARTIAL |
NONE |
|
cvss-vector
via4
|
AV:L/AC:L/Au:N/C:N/I:P/A:N
|
refmap
via4
|
|
Last major update |
18-04-2022 - 14:26 |
Published |
16-05-2019 - 19:29 |
Last modified |
18-04-2022 - 14:26 |