1 results (0.001 seconds)
CVSS: 7.1EPSS: 1%CPEs: 6EXPL: 0
CVSS: 7.1EPSS: 1%CPEs: 6EXPL: 0CVE-2023-29337 – NuGet Client Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-29337
14 Jun 2023 — NuGet Client Remote Code Execution Vulnerability A vulnerability was found in dotnet. This issue exists in NuGet where a potential race condition can lead to a symlink attack. .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 6.0.118 and .NET Runtime 6.0.18. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29337 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •