logo
DATABASE RESOURCES PRICING ABOUT US

Security Updates for Microsoft Visual Studio Products (November 2021)

Description

The Microsoft Visual Studio Products are missing a security update. They are, therefore, affected by multiple vulnerabilities: - A denial of service (DoS) vulnerability exists in the OpenSSL component of Visual Studio. An unauthenticated, remote attacker can exploit this issue to cause the application to stop responding. (CVE-2020-1971) - Multiple A privilege escalation vulnerabilities exist in Visual Studio. An unauthenticated, local attacker can exploit thees to gain privileged access to the system. (CVE-2021-42277, CVE-2021-42319) Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.


Related