CVE-2022-41032
NuGet Client Elevation of Privilege Vulnerability
NuGet Client Elevation of Privilege Vulnerability
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
Produtos afetados
Microsoft · Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)Microsoft · Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)Microsoft · Microsoft Visual Studio 2022 version 17.0Microsoft · Microsoft Visual Studio 2022 version 17.2Microsoft · Microsoft Visual Studio 2022 version 17.3Microsoft · .NET 6.0Microsoft · .NET Core 3.1Microsoft · Visual Studio 2022 for Mac version 17.3Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FOG35Z5RL5W5RGLLYLN46CI4D2UPDSWM/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HDPT2MJC3HD7HYZGASOOX6MTDR4ASBL5/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X7BMHO5ITRBZREVTEKHQRGSFRPDMALV3/https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41032https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41032