Moderate severityNVD Advisory· Published Jun 15, 2022· Updated Feb 28, 2025
.NET and Visual Studio Information Disclosure Vulnerability
CVE-2022-30184
Description
.NET and Visual Studio Information Disclosure Vulnerability
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
NuGet.CommandsNuGet | >= 3.5.0, < 4.9.5 | 4.9.5 |
NuGet.CommandLineNuGet | >= 3.5.0, < 4.9.5 | 4.9.5 |
NuGet.CommandLine.XPlatNuGet | >= 3.5.0, < 4.9.5 | 4.9.5 |
NuGet.CommandsNuGet | >= 5.0.0, < 5.2.1 | 5.2.1 |
NuGet.CommandsNuGet | >= 5.3.0, < 5.7.2 | 5.7.2 |
NuGet.CommandsNuGet | >= 5.8.0, < 5.9.2 | 5.9.2 |
NuGet.CommandsNuGet | >= 5.10.0, < 5.11.2 | 5.11.2 |
NuGet.CommandsNuGet | >= 6.0.0, < 6.0.2 | 6.0.2 |
NuGet.CommandsNuGet | >= 6.1.0, < 6.2.1 | 6.2.1 |
NuGet.CommandLineNuGet | >= 5.0.0, < 5.2.1 | 5.2.1 |
NuGet.CommandLineNuGet | >= 5.3.0, < 5.7.2 | 5.7.2 |
NuGet.CommandLineNuGet | >= 5.8.0, < 5.9.2 | 5.9.2 |
NuGet.CommandLineNuGet | >= 5.10.0, < 5.11.2 | 5.11.2 |
NuGet.CommandLineNuGet | >= 6.0.0, < 6.0.2 | 6.0.2 |
NuGet.CommandLineNuGet | >= 6.1.0, < 6.2.1 | 6.2.1 |
NuGet.CommandLine.XPlatNuGet | >= 5.0.0, < 5.2.1 | 5.2.1 |
NuGet.CommandLine.XPlatNuGet | >= 5.3.0, < 5.7.2 | 5.7.2 |
NuGet.CommandLine.XPlatNuGet | >= 5.8.0, < 5.9.2 | 5.9.2 |
NuGet.CommandLine.XPlatNuGet | >= 5.10.0, < 5.11.2 | 5.11.2 |
NuGet.CommandLine.XPlatNuGet | >= 6.0.0, < 6.0.2 | 6.0.2 |
NuGet.CommandLine.XPlatNuGet | >= 6.1.0, < 6.2.1 | 6.2.1 |
Affected products
14- osv-coords5 versionspkg:bitnami/dotnetpkg:bitnami/dotnet-sdkpkg:nuget/nuget.commandlinepkg:nuget/nuget.commandline.xplatpkg:nuget/nuget.commands
>= 6.0.0, < 6.0.1+ 4 more
- (no CPE)range: >= 6.0.0, < 6.0.1
- (no CPE)range: >= 6.0.0, < 6.0.1
- (no CPE)range: >= 3.5.0, < 4.9.5
- (no CPE)range: >= 3.5.0, < 4.9.5
- (no CPE)range: >= 3.5.0, < 4.9.5
- Microsoft/Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)v5Range: 16.11.0
- Microsoft/Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)v5Range: 15.0.0
- Microsoft/Microsoft Visual Studio 2022 version 17.0v5Range: 17.0.0
- Microsoft/Microsoft Visual Studio 2022 version 17.2v5Range: 17.2.0
- Microsoft/.NET 6.0v5Range: 6.0.0
- Microsoft/.NET Core 3.1v5Range: 3.1
- Microsoft/NuGet.exev5Range: 6.0.0
- Microsoft/Visual Studio 2019 for Mac version 8.10v5Range: 8.1.0
- Microsoft/Visual Studio 2022 for Mac version 17.0v5Range: 17.0.0
Patches
Vulnerability mechanics
References
11- github.com/advisories/GHSA-3885-8gqc-3wpfghsaADVISORY
- msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30184ghsavendor-advisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2022-30184ghsaADVISORY
- github.com/NuGet/Home/issues/11883ghsaWEB
- github.com/NuGet/NuGet.Client/commit/ec6e62a645ec6b53a8784bf4571cac7786fd700bghsaWEB
- github.com/NuGet/NuGet.Client/security/advisories/GHSA-3885-8gqc-3wpfghsaWEB
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DMP34G53EA2DBTBLFOAQCDZRRENE2EA2ghsaWEB
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XWNH4AC3LFVX35MDRX5OBZDGD2AMH66KghsaWEB
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DMP34G53EA2DBTBLFOAQCDZRRENE2EA2ghsaWEB
- lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XWNH4AC3LFVX35MDRX5OBZDGD2AMH66KghsaWEB
- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30184ghsaWEB
News mentions
0No linked articles in our index yet.