Lucene search
Symantec Security ResponseSMNTC-108210HistoryMay 14, 2019 - 12:00 a.m.
Microsoft NuGet Package Manager CVE-2019-0976 Tampering Security Bypass Vulnerability
2019-05-1400:00:00
Symantec Security Response
www.symantec.com
37
0.0004 Low
EPSS
Percentile
7.7%
Description
Microsoft NuGet is prone to a security bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions.
Technologies Affected
- Microsoft NuGet 5.0.2
Recommendations
Permit local access for trusted individuals only. Where possible, use restricted environments and restricted shells.
To exploit this vulnerability, an attacker requires local access to an affected computer. Grant local access for trusted and accountable users only.
Updates are available. Please see the references or vendor advisory for more information.
| CPE | Name | Operator | Version |
|---|---|---|---|
| microsoft nuget | eq | 5.0.2 |
Related
veracode
veracode
Insecure Access Controls
2019-07-08 12:41:43
prion
prion
Security feature bypass
2019-05-16 19:29:00
mscve
mscve
NuGet Package Manager Tampering Vulnerability
2019-05-14 07:00:00
debiancve
debiancve
CVE-2019-0976
2019-05-16 19:29:00
osv
osv
NuGet Package Manager Tampering Vulnerability
2022-05-24 22:28:08
ubuntucve
ubuntucve
CVE-2019-0976
2019-05-16 00:00:00
cve
cve
CVE-2019-0976
2019-05-16 19:29:00
github
github
NuGet Package Manager Tampering Vulnerability
2022-05-24 22:28:08
kaspersky
kaspersky
KLA11485 Multiple vulnerabilities in Microsoft Developer Tools
2019-05-14 00:00:00
talosblog
talosblog