Vulnerability Database
Blog
FAQ
Docs
CVE-2023-29337
See a problem?
Please try reporting it
to the source
first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2023-29337
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-29337.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2023-29337
Aliases
GHSA-6qmf-mmc7-6c2p
Related
ALSA-2023:3581
ALSA-2023:3582
ALSA-2023:3592
ALSA-2023:3593
RHSA-2023:3580
RHSA-2023:3581
RHSA-2023:3582
RHSA-2023:3592
RHSA-2023:3593
RHSA-2023:4448
RHSA-2023:4449
RLSA-2023:3582
RLSA-2023:3593
UBUNTU-CVE-2023-29337
USN-6161-1
Published
2023-06-14T15:15:09Z
Modified
2024-09-11T04:55:09.270556Z
Severity
7.1 (High)
CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
CVSS Calculator
Summary
[none]
Details
NuGet Client Remote Code Execution Vulnerability
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29337
https://security-tracker.debian.org/tracker/CVE-2023-29337
Affected packages
Debian:11
/
nuget
Package
Name
nuget
Purl
pkg:deb/debian/nuget?arch=source
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Affected versions
2.*
2.8.7+md510+dhx1-1.1
Ecosystem specific
{ "urgency": "not yet assigned" }
Debian:12
/
nuget
Package
Name
nuget
Purl
pkg:deb/debian/nuget?arch=source
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Affected versions
2.*
2.8.7+md510+dhx1-1.1
Ecosystem specific
{ "urgency": "not yet assigned" }
CVE-2023-29337 - OSV