{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"moderate"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2019-0976","title":"Title"},{"category":"description","text":"A tampering vulnerability exists in the NuGet Package Manager for Linux and Mac that could allow an authenticated attacker to modify contents of the intermediate build folder (by default \"obj\"), aka 'NuGet Package Manager Tampering Vulnerability'.","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2019-0976","url":"https://www.suse.com/security/cve/CVE-2019-0976"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 1135450 for CVE-2019-0976","url":"https://bugzilla.suse.com/1135450"}],"title":"SUSE CVE CVE-2019-0976","tracking":{"current_release_date":"2025-02-18T06:45:51Z","generator":{"date":"2023-02-15T04:19:28Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2019-0976","initial_release_date":"2023-02-15T04:19:28Z","revision_history":[{"date":"2023-02-15T04:19:28Z","number":"2","summary":"Current version"},{"date":"2025-01-01T07:06:04Z","number":"3","summary":"Current version"},{"date":"2025-02-15T07:47:55Z","number":"4","summary":"Current version"},{"date":"2025-02-18T06:45:51Z","number":"5","summary":"Current version"}],"status":"interim","version":"5"}}}