7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.6 High
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.003 Low
EPSS
Percentile
67.2%
09/13/2022
High
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, cause denial of service.
Visual Studio 2022 for Mac version 17.3
Microsoft Visual Studio 2022 version 17.3
Microsoft .NET Framework 3.5 AND 4.7.2
Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)
Microsoft .NET Framework 4.8
Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft Visual Studio 2022 version 17.2
Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)
Microsoft .NET Framework 3.5 AND 4.8.1
.NET 6.0
Microsoft .NET Framework 3.5
Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2
Microsoft .NET Framework 4.6
.NET Core 3.1
Microsoft .NET Framework 4.8.1
Visual Studio Code
Microsoft .NET Framework 3.5 AND 4.8
Microsoft Visual Studio 2022 version 17.0
Microsoft .NET Framework 3.5.1
Microsoft .NET Framework 2.0 Service Pack 2
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
CVE-2022-38020
CVE-2022-26929
CVE-2022-38013
ACE
CVE-2022-380207.3High
CVE-2022-269297.8Critical
CVE-2022-380137.5Critical
5017327
5017500
5017497
5017915
5017903
5017501
5017499
support.microsoft.com/kb/5017327
support.microsoft.com/kb/5017497
support.microsoft.com/kb/5017499
support.microsoft.com/kb/5017500
support.microsoft.com/kb/5017501
support.microsoft.com/kb/5017903
support.microsoft.com/kb/5017915
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26929
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38013
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38020
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-26929
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38013
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-38020
portal.msrc.microsoft.com/en-us/security-guidance
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/product/Microsoft-.NET-Framework/
threats.kaspersky.com/en/product/Microsoft-Visual-Studio/
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.6 High
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.003 Low
EPSS
Percentile
67.2%