{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-05T23:02:06.541","vulnerabilities":[{"cve":{"id":"CVE-2019-0757","sourceIdentifier":"secure@microsoft.com","published":"2019-04-09T02:29:00.600","lastModified":"2024-11-21T04:17:13.843","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A tampering vulnerability exists in the NuGet Package Manager for Linux and Mac that could allow an authenticated attacker to modify a NuGet package's folder structure, aka 'NuGet Package Manager Tampering Vulnerability'."},{"lang":"es","value":"Existe una vulnerabilidad de manipulación en NuGet Package Manager para Linux y Mac que podría permitir que un atacante autenticado modifique la estructura de carpetas de un paquete de NuGet, también conocida como 'NuGet Package Manager Tampering Vulnerability'."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:N/I:P/A:N","baseScore":4.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:visual_studio_2017:-:*:*:*:*:*:*:*","matchCriteriaId":"CDA983E6-A2DA-48BB-9874-14CF4B3AAE15"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*","matchCriteriaId":"387021A0-AF36-463C-A605-32EA7DAC172E"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuget:4.3.1:*:*:*:*:*:*:*","matchCriteriaId":"3BBC3EE0-4087-41B2-A68E-547BC2E555B0"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuget:4.4.2:*:*:*:*:*:*:*","matchCriteriaId":"A682279C-B149-4B8C-A77B-358734FEED04"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuget:4.5.2:*:*:*:*:*:*:*","matchCriteriaId":"1D679328-6D42-47AA-9442-39EDD7934AC8"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuget:4.6.3:*:*:*:*:*:*:*","matchCriteriaId":"1CEF9AC2-976B-4984-ACE7-7F1FFDC5DE4E"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuget:4.7.2:*:*:*:*:*:*:*","matchCriteriaId":"687F6CDF-90C8-4452-8EF4-2B7B2583D399"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuget:4.8.2:*:*:*:*:*:*:*","matchCriteriaId":"CCA80AC0-B4F7-4318-B1DF-CC12C878B458"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:nuget:4.9.4:*:*:*:*:*:*:*","matchCriteriaId":"C821DB95-80BF-4B94-8194-AAA286457FA3"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:mono-project:mono_framework:5.18.0.223:*:*:*:*:*:*:*","matchCriteriaId":"2A9C97DF-AF6E-4D4D-9A65-F4DA1E8B4F91"},{"vulnerable":true,"criteria":"cpe:2.3:a:mono-project:mono_framework:5.20.0:*:*:*:*:*:*:*","matchCriteriaId":"A56F0C3E-21CF-4887-B931-505E9F9BAE54"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:.net_core_sdk:1.1:*:*:*:*:*:*:*","matchCriteriaId":"F38B0049-4EF6-4EFB-AC6A-71B8A9FA6544"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:a:microsoft:.net_core:1.0:*:*:*:*:*:*:*","matchCriteriaId":"9EDF760A-C775-457E-8091-586E56545B07"},{"vulnerable":false,"criteria":"cpe:2.3:a:microsoft:.net_core:1.1:*:*:*:*:*:*:*","matchCriteriaId":"2F87DCF0-0552-4815-8148-C9894397C5EF"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:.net_core_sdk:2.1.500:*:*:*:*:*:*:*","matchCriteriaId":"7BACCC0F-721B-4039-985D-EFAD2044996E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:a:microsoft:.net_core:2.1:*:*:*:*:*:*:*","matchCriteriaId":"3BF7E3F6-D3AE-404D-8F0E-0C57BF23006C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:.net_core_sdk:2.2.100:*:*:*:*:*:*:*","matchCriteriaId":"D8A3CDDB-8FF1-4CB0-BD4E-5BF78792D9CC"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:a:microsoft:.net_core:2.2:*:*:*:*:*:*:*","matchCriteriaId":"A5AB75F9-B0FC-46B5-A863-0458696773DB"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*","matchCriteriaId":"F4CFF558-3C47-480D-A2F0-BABF26042943"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:8.1:*:*:*:*:*:*:*","matchCriteriaId":"92BC9265-6959-4D37-BE5E-8C45E98992F8"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:8.2:*:*:*:*:*:*:*","matchCriteriaId":"831F0F47-3565-4763-B16F-C87B1FF2035E"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_eus:8.4:*:*:*:*:*:*:*","matchCriteriaId":"0E3F09B5-569F-4C58-9FCA-3C0953D107B5"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*","matchCriteriaId":"6897676D-53F9-45B3-B27F-7FF9A4C58D33"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:*:*:*:*:*:*:*","matchCriteriaId":"E28F226A-CBC7-4A32-BE58-398FA5B42481"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*","matchCriteriaId":"B09ACF2D-D83F-4A86-8185-9569605D8EE1"},{"vulnerable":true,"criteria":"cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:*:*:*:*:*:*:*","matchCriteriaId":"AC10D919-57FD-4725-B8D2-39ECB476902F"}]}]}],"references":[{"url":"https://access.redhat.com/errata/RHSA-2019:1259","source":"secure@microsoft.com","tags":["Third Party Advisory"]},{"url":"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0757","source":"secure@microsoft.com","tags":["Patch","Vendor Advisory"]},{"url":"https://access.redhat.com/errata/RHSA-2019:1259","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]},{"url":"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0757","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}}]}