Vulnerability Monitor

Type: Primary NVD-CWE-noinfo
Type: Secondary CWE-269

The vendors, products, and vulnerabilities you care about

CVE-2022-41032

NuGet Client Elevation of Privilege Vulnerability

2022-10-11T19:15:20.483

2025-02-28T21:15:18.340

Modified

CVSSv3.1: 7.8 (HIGH)

Type	Vendor	Product	Version/Range	Vulnerable?
Application	microsoft	.net	6.0.0	Yes
Application	microsoft	.net_core	3.1	Yes
Application	microsoft	visual_studio_2019	< 16.9.26	Yes
Application	microsoft	visual_studio_2019	< 16.11.20	Yes
Application	microsoft	visual_studio_2022	< 17.0.15	Yes
Application	microsoft	visual_studio_2022	< 17.2.9	Yes
Application	microsoft	visual_studio_2022	< 17.3.6	Yes
Application	microsoft	visual_studio_2022	< 17.3.7	Yes
Operating System	fedoraproject	fedora	35	Yes
Operating System	fedoraproject	fedora	36	Yes
Operating System	fedoraproject	fedora	37	Yes

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41032 ([email protected])
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FOG35Z5RL5W5RGLLYLN46CI4D2UPDSWM/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HDPT2MJC3HD7HYZGASOOX6MTDR4ASBL5/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X7BMHO5ITRBZREVTEKHQRGSFRPDMALV3/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-41032 Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)