CVE-2020-0899

🗓️ 15 Apr 2020 15:12:44Reported by microsoftType

Microsoft Visual Studio updater service elevation of privilege vulnerabilit

Reporter	Title	Published	Views	Family All 12
Information Security Automation	Microsoft Patch Tuesday April 2020: my classification script, confusing RCE in Adobe Type Manager and updates for older vulnerabilities	26 Apr 202001:24	–	avleonov
Circl	CVE-2020-0899	15 Apr 202019:14	–	circl
CNVD	Microsoft Visual Studio Privilege Mobilization Vulnerability (CNVD-2020-24130)	16 Apr 202000:00	–	cnvd
Cvelist	CVE-2020-0899	15 Apr 202015:12	–	cvelist
EUVD	EUVD-2020-2367	7 Oct 202500:30	–	euvd
Kaspersky	KLA11748 Multiple vulnerabilities in Microsoft Developer Tools	14 Apr 202000:00	–	kaspersky
Microsoft CVE	Microsoft Visual Studio Elevation of Privilege Vulnerability	14 Apr 202007:00	–	mscve
NVD	CVE-2020-0899	15 Apr 202015:15	–	nvd
OSV	CVE-2020-0899	15 Apr 202015:15	–	osv
Prion	Privilege escalation	15 Apr 202015:15	–	prion

NVD

Vulners

Node

microsoft visual_studio_2017Match15.9

microsoft visual_studio_2019Match16.0

microsoft visual_studio_2019Match16.4

microsoft visual_studio_2019Match16.5.0

[
  {
    "product": "Microsoft Visual Studio 2019 version 16.5",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "unspecified"
      }
    ]
  },
  {
    "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.1 - 15.8)",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "unspecified"
      }
    ]
  },
  {
    "product": "Microsoft Visual Studio 2019",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "16.0"
      }
    ]
  },
  {
    "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "unspecified"
      }
    ]
  }
]

Source	Link
portal	www.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0899

21 Nov 2024 04:54Current

6.8Medium risk

Vulners AI Score6.8

CVSS 23.6

CVSS 3.15.5

EPSS0.00248