2018-11-26 16:06:22 -05:00
{
2019-05-16 19:01:06 +00:00
"data_type" : "CVE" ,
"data_format" : "MITRE" ,
"data_version" : "4.0" ,
"CVE_data_meta" : {
"ASSIGNER" : "secure@microsoft.com" ,
"ID" : "CVE-2019-0976" ,
"STATE" : "PUBLIC"
} ,
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "Nuget" ,
"version" : {
"version_data" : [
{
"version_value" : "5.0.2"
}
]
}
}
]
} ,
"vendor_name" : "Microsoft"
2019-05-15 14:29:10 -07:00
}
]
}
2019-05-16 19:01:06 +00:00
} ,
"description" : {
"description_data" : [
{
"lang" : "eng" ,
2019-05-20 21:00:46 +00:00
"value" : "A tampering vulnerability exists in the NuGet Package Manager for Linux and Mac that could allow an authenticated attacker to modify contents of the intermediate build folder (by default \"obj\"), aka 'NuGet Package Manager Tampering Vulnerability'."
2019-05-16 19:01:06 +00:00
}
]
} ,
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng" ,
"value" : "Tampering"
}
]
}
2019-05-15 14:29:10 -07:00
]
2019-05-16 19:01:06 +00:00
} ,
"references" : {
"reference_data" : [
2019-05-20 14:00:52 +00:00
{
"refsource" : "BID" ,
"name" : "108210" ,
"url" : "http://www.securityfocus.com/bid/108210"
} ,
2019-05-16 19:01:06 +00:00
{
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0976" ,
"refsource" : "MISC" ,
"name" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0976"
}
]
}
}
