Published: 09/04/2019 Updated: 11/04/2022

CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8

CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8

VMScore: 356

Vector: AV:N/AC:L/Au:S/C:N/I:P/A:N

Subscribe to Visual Studio 2017

A tampering vulnerability exists in the NuGet Package Manager for Linux and Mac that could allow an authenticated malicious user to modify a NuGet package's folder structure, aka 'NuGet Package Manager Tampering Vulnerability'.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft visual_studio_2017 -
microsoft nuget 4.9.4
microsoft nuget 4.3.1
microsoft nuget 4.4.2
microsoft nuget 4.7.2
microsoft nuget 4.8.2
microsoft nuget 4.5.2
microsoft nuget 4.6.3
mono-project mono framework 5.18.0.223
mono-project mono framework 5.20.0
microsoft .net_core_sdk 1.1
microsoft .net_core_sdk 2.1.500
microsoft .net_core_sdk 2.2.100
redhat enterprise linux 8.0
redhat enterprise linux eus 8.1
redhat enterprise linux eus 8.2
redhat enterprise linux eus 8.4
redhat enterprise linux server aus 8.2
redhat enterprise linux server aus 8.4
redhat enterprise linux server tus 8.2
redhat enterprise linux server tus 8.4

Synopsis Important: dotnet security, bug fix, and enhancement update Type/Severity Security Advisory: Important Topic An update for dotnet is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring S ...

Synopsis Important: NET Core on Red Hat Enterprise Linux security update for March 2019 Type/Severity Security Advisory: Important Topic Updates for rh-dotnetcore10-dotnetcore, rh-dotnetcore11-dotnetcore, rh-dotnet21-dotnet, and rh-dotnet22-dotnet are now available for NET Core on Red Hat Enterprise Linux ...

Microsoft Patch Tuesday – March 2019

Symantec Threat Intelligence Blog • Ratheesh PM • 13 Mar 2024

This month the vendor has patched 64 vulnerabilities, 17 of which are rated Critical.

Posted: 13 Mar, 201920 Min ReadThreat Intelligence SubscribeFollowtwitterfacebooklinkedinMicrosoft Patch Tuesday – March 2019This month the vendor has patched 64 vulnerabilities, 17 of which are rated Critical.As always, customers are advised to follow these security best practices: Install vendor patches as soon as they are available. Run all software with the least privileges required while still maintaining functionality. Avoid handlin...

The Register • Shaun Nichols in San Francisco • 12 Mar 2019

DHCP client has trio of remote-code exec vulns – plus SAP, Adobe issue updates

Patch Tuesday It's the second Tuesday of the month, and you know what that means: a fresh dump of security fixes from Microsoft, Adobe and others. The March edition of Patch Tuesday includes fixes for 64 CVE-listed vulnerabilities, while Adobe addressed a pair of bugs in Photoshop and Digital Editions. Even SAP has got in on the game. You should review the updates, test them if necessary or able to, and install them as soon as possible, to avoid running into miscreants exploiting them to comprom...

CVE-2019-0757

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Recent Articles

References

Vulmon Search

About

Products

Connect