Home

Description

NuGet Client Elevation of Privilege Vulnerability

PUBLISHED Reserved 2022-09-19 | Published 2022-10-11 | Updated 2025-02-28 | Assigner microsoft




HIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Problem types

Elevation of Privilege

Product status

6.0.0 (custom) before 6.0.10
affected

3.1 (custom) before 3.1.30
affected

17.2.0 (custom) before 17.2.9
affected

16.11.0 (custom) before 16.11.20
affected

15.0.0 (custom) before 16.9.26
affected

17.0.0 (custom) before 17.0.15
affected

17.0.0 (custom) before 17.3.6
affected

17.3 (custom) before 17.3.7
affected

References

portal.msrc.microsoft.com/...uidance/advisory/CVE-2022-41032

lists.fedoraproject.org/...X7BMHO5ITRBZREVTEKHQRGSFRPDMALV3/ (FEDORA-2022-f9ca76e479) vendor-advisory

lists.fedoraproject.org/...HDPT2MJC3HD7HYZGASOOX6MTDR4ASBL5/ (FEDORA-2022-7f5f9ede26) vendor-advisory

lists.fedoraproject.org/...FOG35Z5RL5W5RGLLYLN46CI4D2UPDSWM/ (FEDORA-2022-2c37647a9c) vendor-advisory

msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41032 (NuGet Client Elevation of Privilege Vulnerability) vendor-advisory

cve.org (CVE-2022-41032)

nvd.nist.gov (CVE-2022-41032)

Download JSON