7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.3 High
AI Score
Confidence
Low
4.4 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
46.2%
06/15/2023
High
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges.
Microsoft Visual Studio 2022 version 17.8
Microsoft Visual Studio 2022 version 17.6
Microsoft Visual Studio 2022 version 17.4
Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)
Microsoft Visual Studio 2022 version 17.2
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
CVE-2023-29349
CVE-2023-32028
CVE-2023-32026
CVE-2023-32025
CVE-2023-29356
CVE-2023-32027
ACE
CVE-2023-320277.8Critical
CVE-2023-320257.8Critical
CVE-2023-293567.8Critical
CVE-2023-320287.8Critical
CVE-2023-320267.8Critical
CVE-2023-293497.8Critical
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29349
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-29356
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32025
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32026
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32027
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-32028
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29349
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29356
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32025
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32026
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32027
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32028
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/product/Microsoft-Visual-Studio/
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.3 High
AI Score
Confidence
Low
4.4 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
46.2%