An information disclosure vulnerability exists when Visual Studio improperly parses XML input in certain settings files, aka ‘Visual Studio Information Disclosure Vulnerability’.
[
{
"product": "Microsoft Visual Studio",
"vendor": "Microsoft",
"versions": [
{
"status": "affected",
"version": "2010 Service Pack 1"
},
{
"status": "affected",
"version": "2012 Update 5"
},
{
"status": "affected",
"version": "2013 Update 5"
},
{
"status": "affected",
"version": "2015 Update 3"
}
]
}
]