VulnerableCode Package Details - pkg:nuget/NuGet.Commands@5.0.0

Search for packages

Vulnerability	Summary	Fixed by
VCID-2xft-a45k-aaaa Aliases: CVE-2019-0976 GHSA-3hcm-6fjc-47qq	A tampering vulnerability exists in the NuGet Package Manager for Linux and Mac that could allow an authenticated attacker to modify contents of the intermediate build folder (by default "obj"), aka 'NuGet Package Manager Tampering Vulnerability'.	5.0.2 Affected by 0 other vulnerabilities.
VCID-ehjx-93rf-aaac Aliases: CVE-2022-41032 GHSA-g3q9-xf95-8hp5	NuGet Elevation of Privilege Vulnerability	5.7.1 Affected by 3 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 5.7.3 Affected by 0 other vulnerabilities. 5.9.3 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 5.11.3 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 6.0.3 Affected by 0 other vulnerabilities. 6.1.0 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 6.2.2 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 6.3.1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-tbmk-b59y-aaaj Aliases: CVE-2022-30184 GHSA-3885-8gqc-3wpf GMS-2022-2161 GMS-2022-2162 GMS-2022-2163	.NET and Visual Studio Information Disclosure Vulnerability	5.2.1 Affected by 0 other vulnerabilities. 5.7.2 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 5.9.2 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 5.11.2 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 6.0.2 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 6.2.1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-2xft-a45k-aaaa
Aliases:
CVE-2019-0976
GHSA-3hcm-6fjc-47qq

A tampering vulnerability exists in the NuGet Package Manager for Linux and Mac that could allow an authenticated attacker to modify contents of the intermediate build folder (by default "obj"), aka 'NuGet Package Manager Tampering Vulnerability'.

5.0.2
Affected by 0 other vulnerabilities.

VCID-ehjx-93rf-aaac
Aliases:
CVE-2022-41032
GHSA-g3q9-xf95-8hp5

NuGet Elevation of Privilege Vulnerability

5.7.1
Affected by 3 other vulnerabilities.

5.7.3
Affected by 0 other vulnerabilities.

5.9.3
Affected by 1 other vulnerability.

5.11.3
Affected by 1 other vulnerability.

6.0.3
Affected by 0 other vulnerabilities.

6.1.0
Affected by 2 other vulnerabilities.

6.2.2
Affected by 1 other vulnerability.

6.3.1
Affected by 1 other vulnerability.

VCID-tbmk-b59y-aaaj
Aliases:
CVE-2022-30184
GHSA-3885-8gqc-3wpf
GMS-2022-2161
GMS-2022-2162
GMS-2022-2163

.NET and Visual Studio Information Disclosure Vulnerability

5.2.1
Affected by 0 other vulnerabilities.

5.7.2
Affected by 2 other vulnerabilities.

5.9.2
Affected by 2 other vulnerabilities.

5.11.2
Affected by 2 other vulnerabilities.

6.0.2
Affected by 2 other vulnerabilities.

6.2.1
Affected by 2 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-29T10:48:52.346514+00:00	GHSA Importer	Affected by	VCID-ehjx-93rf-aaac	None	36.0.0
2025-03-29T10:48:52.036608+00:00	GHSA Importer	Affected by	VCID-ehjx-93rf-aaac	https://github.com/advisories/GHSA-g3q9-xf95-8hp5	36.0.0
2025-03-29T10:47:42.865652+00:00	GHSA Importer	Affected by	VCID-tbmk-b59y-aaaj	None	36.0.0
2025-03-29T10:47:41.267090+00:00	GHSA Importer	Affected by	VCID-tbmk-b59y-aaaj	https://github.com/advisories/GHSA-3885-8gqc-3wpf	36.0.0
2025-03-28T16:48:48.130238+00:00	GitLab Importer	Affected by	VCID-ehjx-93rf-aaac	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/NuGet.Commands/CVE-2022-41032.yml	36.0.0
2024-09-17T22:46:55.709932+00:00	GitLab Importer	Affected by	VCID-tbmk-b59y-aaaj	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/NuGet.Commands/GMS-2022-2163.yml	34.0.1
2024-09-17T22:46:55.337650+00:00	GitLab Importer	Affected by	VCID-ehjx-93rf-aaac	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/NuGet.Commands/CVE-2022-41032.yml	34.0.1
2024-09-17T22:06:13.280440+00:00	GHSA Importer	Affected by	VCID-ehjx-93rf-aaac	https://github.com/advisories/GHSA-g3q9-xf95-8hp5	34.0.1
2024-09-17T22:06:11.731168+00:00	GHSA Importer	Affected by	VCID-tbmk-b59y-aaaj	https://github.com/advisories/GHSA-3885-8gqc-3wpf	34.0.1
2024-09-17T22:06:09.619230+00:00	GHSA Importer	Affected by	VCID-2xft-a45k-aaaa	https://github.com/advisories/GHSA-3hcm-6fjc-47qq	34.0.1
2024-04-23T17:40:47.036768+00:00	GHSA Importer	Affected by	VCID-ehjx-93rf-aaac	https://github.com/advisories/GHSA-g3q9-xf95-8hp5	34.0.0rc4
2024-04-23T17:40:45.957023+00:00	GHSA Importer	Affected by	VCID-tbmk-b59y-aaaj	https://github.com/advisories/GHSA-3885-8gqc-3wpf	34.0.0rc4
2024-04-23T17:40:44.142343+00:00	GHSA Importer	Affected by	VCID-2xft-a45k-aaaa	https://github.com/advisories/GHSA-3hcm-6fjc-47qq	34.0.0rc4
2024-01-03T18:08:07.611483+00:00	GitLab Importer	Affected by	VCID-tbmk-b59y-aaaj	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/NuGet.Commands/GMS-2022-2163.yml	34.0.0rc1
2024-01-03T18:08:07.243042+00:00	GitLab Importer	Affected by	VCID-ehjx-93rf-aaac	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/NuGet.Commands/CVE-2022-41032.yml	34.0.0rc1
2024-01-03T17:41:33.782090+00:00	GHSA Importer	Affected by	VCID-tbmk-b59y-aaaj	https://github.com/advisories/GHSA-3885-8gqc-3wpf	34.0.0rc1
2024-01-03T17:41:24.019041+00:00	GHSA Importer	Affected by	VCID-ehjx-93rf-aaac	https://github.com/advisories/GHSA-g3q9-xf95-8hp5	34.0.0rc1