vulnerability

Oracle Linux: CVE-2022-41032: ELSA-2022-6911: .NET 6.0 security and bugfix update (MODERATE) (Multiple Advisories)

Try Surface Command
Back to search
Severity
7
CVSS
(AV:L/AC:L/Au:S/C:C/I:C/A:C)
Published
Oct 11, 2022
Added
Oct 13, 2022
Modified
Dec 3, 2025

Description

NuGet Client Elevation of Privilege Vulnerability
A vulnerability was found in dotnet. This flaw allows an attacker to triage a NuGet cache poisoning on Linux via a world-writable cache directory.

Solutions

oracle-linux-upgrade-aspnetcore-runtime-3-1oracle-linux-upgrade-aspnetcore-runtime-6-0oracle-linux-upgrade-aspnetcore-runtime-7-0oracle-linux-upgrade-aspnetcore-targeting-pack-3-1oracle-linux-upgrade-aspnetcore-targeting-pack-6-0oracle-linux-upgrade-aspnetcore-targeting-pack-7-0oracle-linux-upgrade-dotnetoracle-linux-upgrade-dotnet-apphost-pack-3-1oracle-linux-upgrade-dotnet-apphost-pack-6-0oracle-linux-upgrade-dotnet-apphost-pack-7-0oracle-linux-upgrade-dotnet-hostoracle-linux-upgrade-dotnet-hostfxr-3-1oracle-linux-upgrade-dotnet-hostfxr-6-0oracle-linux-upgrade-dotnet-hostfxr-7-0oracle-linux-upgrade-dotnet-runtime-3-1oracle-linux-upgrade-dotnet-runtime-6-0oracle-linux-upgrade-dotnet-runtime-7-0oracle-linux-upgrade-dotnet-sdk-3-1oracle-linux-upgrade-dotnet-sdk-3-1-source-built-artifactsoracle-linux-upgrade-dotnet-sdk-6-0oracle-linux-upgrade-dotnet-sdk-6-0-source-built-artifactsoracle-linux-upgrade-dotnet-sdk-7-0oracle-linux-upgrade-dotnet-sdk-7-0-source-built-artifactsoracle-linux-upgrade-dotnet-targeting-pack-3-1oracle-linux-upgrade-dotnet-targeting-pack-6-0oracle-linux-upgrade-dotnet-targeting-pack-7-0oracle-linux-upgrade-dotnet-templates-3-1oracle-linux-upgrade-dotnet-templates-6-0oracle-linux-upgrade-dotnet-templates-7-0oracle-linux-upgrade-netstandard-targeting-pack-2-1

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today