Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft nuget vulnerabilities and exploits
(subscribe to this query)
7.1
CVSSv3
CVE-2023-29337
NuGet Client Remote Code Execution Vulnerability
Microsoft Nuget 6.5.0
Microsoft Nuget 6.4.1
Microsoft Nuget 6.3.2
Microsoft Nuget 6.2.3
Microsoft Nuget 6.0.4
Microsoft Nuget 6.6.0
6.5
CVSSv3
CVE-2019-0757
A tampering vulnerability exists in the NuGet Package Manager for Linux and Mac that could allow an authenticated malicious user to modify a NuGet package's folder structure, aka 'NuGet Package Manager Tampering Vulnerability'.
Microsoft Visual Studio 2017 -
Microsoft Nuget 4.3.1
Microsoft Nuget 4.4.2
Microsoft Nuget 4.5.2
Microsoft Nuget 4.6.3
Microsoft Nuget 4.7.2
Microsoft Nuget 4.8.2
Microsoft Nuget 4.9.4
Mono-project Mono Framework 5.18.0.223
Mono-project Mono Framework 5.20.0
Microsoft .net Core Sdk 1.1
Microsoft .net Core Sdk 2.1.500
Microsoft .net Core Sdk 2.2.100
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux Eus 8.1
Redhat Enterprise Linux Eus 8.2
Redhat Enterprise Linux Server Tus 8.2
Redhat Enterprise Linux Server Aus 8.2
Redhat Enterprise Linux Server Tus 8.4
Redhat Enterprise Linux Eus 8.4
Redhat Enterprise Linux Server Aus 8.4
2 Articles
5.5
CVSSv3
CVE-2019-0976
A tampering vulnerability exists in the NuGet Package Manager for Linux and Mac that could allow an authenticated malicious user to modify contents of the intermediate build folder (by default "obj"), aka 'NuGet Package Manager Tampering Vulnerability'.
Microsoft Nuget 5.0.2
1 Article
5.8
CVSSv3
CVE-2022-41064
.NET Framework Information Disclosure Vulnerability
Microsoft .net Framework 4.8
Microsoft .net Framework 4.8.1
Microsoft .net Framework 4.6.2
Microsoft .net Framework 4.7
Microsoft .net Framework 4.7.1
Microsoft .net Framework 4.7.2
Microsoft Nuget
5.5
CVSSv3
CVE-2022-30184
.NET and Visual Studio Information Disclosure Vulnerability
Microsoft Visual Studio 2022
Microsoft .net Core 3.1
Microsoft Visual Studio 2019 8.10
Microsoft .net 6.0.0
Microsoft Visual Studio 2019
Microsoft Nuget
Fedoraproject Fedora 35
Fedoraproject Fedora 36
8.8
CVSSv3
CVE-2019-1258
An elevation of privilege vulnerability exists in Azure Active Directory Authentication Library On-Behalf-Of flow, in the way the library caches tokens. This vulnerability allows an authenticated malicious user to perform actions in context of another user. The authenticated atta...
Microsoft Active Directory Authentication Library 5.0.3
Microsoft Active Directory Authentication Library 5.0.2
Microsoft Active Directory Authentication Library 5.0.1
Microsoft Active Directory Authentication Library 5.0.0
Microsoft Active Directory Authentication Library
Microsoft Nuget 5.2.0
7.8
CVSSv3
CVE-2022-41032
NuGet Client Elevation of Privilege Vulnerability
Microsoft .net Core 3.1
Microsoft .net 6.0.0
Microsoft Visual Studio 2022
Microsoft Visual Studio 2019
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Fedoraproject Fedora 37
8.4
CVSSv3
CVE-2021-24105
<p>Depending on configuration of various package managers it is possible for an malicious user to insert a malicious package into a package manager's repository which can be retrieved and used during development, build, and release processes. This insertion could lead ...
Microsoft Package Manager Configurations -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started