Microsoft - Visual Studio 2019 CVE

Filtered by vendor Microsoft Subscribe

Filtered by product Visual Studio 2019

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 21 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-1130	1 Microsoft	6 Visual Studio, Visual Studio 2017, Visual Studio 2019 and 3 more	2023-12-31	4.6 MEDIUM	6.6 MEDIUM
<p>An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector improperly handles data operations. An attacker who successfully exploited this vulnerability could run processes in an elevated context.</p> <p>An attacker could exploit this vulnerability by running a specially crafted application on the victim system.</p> <p>The update addresses the vulnerability by correcting the way the Diagnostics Hub Standard Collector handles data operations.</p>
CVE-2020-1133	1 Microsoft	6 Visual Studio, Visual Studio 2017, Visual Studio 2019 and 3 more	2023-12-31	4.6 MEDIUM	5.5 MEDIUM
<p>An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector improperly handles file operations. An attacker who successfully exploited this vulnerability could run processes in an elevated context.</p> <p>An attacker could exploit this vulnerability by running a specially crafted application on the victim system.</p> <p>The update addresses the vulnerability by correcting the way the Diagnostics Hub Standard Collector handles file operations.</p>
CVE-2020-17100	1 Microsoft	2 Visual Studio 2017, Visual Studio 2019	2023-12-31	2.1 LOW	5.5 MEDIUM
Visual Studio Tampering Vulnerability
CVE-2021-1721	1 Microsoft	5 .net, .net Core, Powershell Core and 2 more	2023-12-29	4.3 MEDIUM	6.5 MEDIUM
.NET Core and Visual Studio Denial of Service Vulnerability
CVE-2021-34485	1 Microsoft	5 .net, .net Core, Powershell Core and 2 more	2023-12-28	2.1 LOW	5.0 MEDIUM
.NET Core and Visual Studio Information Disclosure Vulnerability
CVE-2021-34532	1 Microsoft	2 Asp.net Core, Visual Studio 2019	2023-12-28	2.1 LOW	5.5 MEDIUM
ASP.NET Core and Visual Studio Information Disclosure Vulnerability
CVE-2021-42277	1 Microsoft	8 Visual Studio, Visual Studio 2017, Visual Studio 2019 and 5 more	2023-12-28	4.6 MEDIUM	5.5 MEDIUM
Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability
CVE-2021-42319	1 Microsoft	2 Visual Studio 2017, Visual Studio 2019	2023-12-28	2.1 LOW	4.7 MEDIUM
Visual Studio Elevation of Privilege Vulnerability
CVE-2022-24512	2 Fedoraproject, Microsoft	6 Fedora, .net, .net Core and 3 more	2023-12-21	6.8 MEDIUM	6.3 MEDIUM
.NET and Visual Studio Remote Code Execution Vulnerability
CVE-2022-30184	3 Apple, Fedoraproject, Microsoft	7 Macos, Fedora, .net and 4 more	2023-12-20	4.3 MEDIUM	5.5 MEDIUM
.NET and Visual Studio Information Disclosure Vulnerability
CVE-2023-28299	1 Microsoft	3 Visual Studio 2017, Visual Studio 2019, Visual Studio 2022	2023-12-13	N/A	5.5 MEDIUM
Visual Studio Spoofing Vulnerability
CVE-2023-36042	1 Microsoft	2 Visual Studio 2019, Visual Studio 2022	2023-11-20	N/A	5.5 MEDIUM
Visual Studio Denial of Service Vulnerability
CVE-2023-36897	1 Microsoft	6 365 Apps, Office, Visual Studio 2010 Tools For Office Runtime and 3 more	2023-08-10	N/A	6.5 MEDIUM
Visual Studio Tools for Office Runtime Spoofing Vulnerability
CVE-2021-31957	2 Fedoraproject, Microsoft	4 Fedora, .net, .net Core and 1 more	2023-08-01	5.0 MEDIUM	5.9 MEDIUM
ASP.NET Denial of Service Vulnerability
CVE-2021-41355	1 Microsoft	3 .net, Powershell, Visual Studio 2019	2023-08-01	2.9 LOW	5.7 MEDIUM
.NET Core and Visual Studio Information Disclosure Vulnerability
CVE-2020-26870	4 Cure53, Debian, Microsoft and 1 more	5 Dompurify, Debian Linux, Visual Studio 2017 and 2 more	2022-04-27	4.3 MEDIUM	6.1 MEDIUM
Cure53 DOMPurify before 2.0.17 allows mutation XSS. This occurs because a serialize-parse roundtrip does not necessarily return the original DOM tree, and a namespace can change from HTML to MathML, as demonstrated by nesting of FORM elements.
CVE-2020-0899	1 Microsoft	2 Visual Studio 2017, Visual Studio 2019	2021-07-21	3.6 LOW	5.5 MEDIUM
An elevation of privilege vulnerability exists when Microsoft Visual Studio updater service improperly handles file permissions, aka 'Microsoft Visual Studio Elevation of Privilege Vulnerability'.
CVE-2020-0900	1 Microsoft	3 Visual Studio 2015, Visual Studio 2017, Visual Studio 2019	2021-07-21	3.6 LOW	5.5 MEDIUM
An elevation of privilege vulnerability exists when the Visual Studio Extension Installer Service improperly handles file operations, aka 'Visual Studio Extension Installer Service Elevation of Privilege Vulnerability'.
CVE-2019-1077	1 Microsoft	2 Visual Studio 2017, Visual Studio 2019	2020-08-24	6.6 MEDIUM	5.0 MEDIUM
An elevation of privilege vulnerability exists when the Visual Studio updater service improperly handles file permissions, aka 'Visual Studio Elevation of Privilege Vulnerability'.
CVE-2019-1425	1 Microsoft	2 Visual Studio 2017, Visual Studio 2019	2020-08-24	5.8 MEDIUM	6.5 MEDIUM
An elevation of privilege vulnerability exists when Visual Studio fails to properly validate hardlinks while extracting archived files, aka 'Visual Studio Elevation of Privilege Vulnerability'.
CVE-2019-1486	1 Microsoft	2 Visual Studio 2019, Visual Studio Live Share	2019-12-16	5.8 MEDIUM	6.1 MEDIUM
A spoofing vulnerability exists in Visual Studio Live Share when a guest connected to a Live Share session is redirected to an arbitrary URL specified by the session host, aka 'Visual Studio Live Share Spoofing Vulnerability'.

Vulnerabilities (CVE)

CVSS v3 Filter

Search