Veracode Vulnerability DatabaseVERACODE:37538Privilege Escalation
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
4.3 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:S/C:P/I:P/A:P
0.0005 Low
EPSS
Percentile
14.7%
NuGet Client is vulnerable to Privilege Escalation. The vulnerability exists because the library does not properly handle a world-writable cache directory, allowing an attacker to inject and execute malicious code, resulting in the elevation of privilege.
References
github.com/advisories/GHSA-g3q9-xf95-8hp5
github.com/dotnet/announcements/issues/236
github.com/NuGet/Announcements/issues/65
github.com/NuGet/Home/issues/12149
lists.fedoraproject.org/archives/list/[email protected]/message/FOG35Z5RL5W5RGLLYLN46CI4D2UPDSWM/
lists.fedoraproject.org/archives/list/[email protected]/message/HDPT2MJC3HD7HYZGASOOX6MTDR4ASBL5/
lists.fedoraproject.org/archives/list/[email protected]/message/X7BMHO5ITRBZREVTEKHQRGSFRPDMALV3/
msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2022-41032
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41032
Related
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
4.3 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:S/C:P/I:P/A:P
0.0005 Low
EPSS
Percentile
14.7%