CVE-2019-0757: CVE-2019-0757

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2019-0757

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

A tampering vulnerability exists in the NuGet Package Manager for Linux and Mac that could allow an authenticated attacker to modify a NuGet package's folder structure, aka 'NuGet Package Manager Tampering Vulnerability'.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Microsoft NuGet Package Manager 访问控制错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Microsoft NuGet Package Manager是美国微软（Microsoft）公司的一款用于.NET框架的包管理器。 Microsoft NuGet Package Manager中存在访问控制错误漏洞。该漏洞源于网络系统或产品未正确限制来自未授权角色的资源访问。以下产品和版本受到影响：Microsoft .NET Core SDK 1.1版本，1.1版本，2.1.500版本；Mono Framework 5.18.0.223版本，5.20.0版本；Nuget 4.3.1版本，4.4.2版

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE
Microsoft	Microsoft Visual Studio	2017 for Mac	-
Microsoft	.NET Core SDK	1.1 on .NET Core 1.0	-
Microsoft	Nuget	4.3.1	-
Microsoft	Mono Framework	5.18.0.223	-

II. Public POCs for CVE-2019-0757

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2019-0757

Please Login to view more intelligence information

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0757x_refsource_CONFIRM
https://access.redhat.com/errata/RHSA-2019:1259vendor-advisoryx_refsource_REDHAT
https://nvd.nist.gov/vuln/detail/CVE-2019-0757

New Vulnerabilities

Product: Microsoft Visual Studio

Vendor: Microsoft

V. Comments for CVE-2019-0757

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2019-0757

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2019-0757

III. Intelligence Information for CVE-2019-0757

New Vulnerabilities

V. Comments for CVE-2019-0757

Leave a comment