Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2019-1079
HistoryJul 15, 2019 - 7:15 p.m.

CVE-2019-1079

2019-07-1519:15:17
CWE-20
[email protected]
web.nvd.nist.gov

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

6 Medium

AI Score

Confidence

High

0.019 Low

EPSS

Percentile

88.7%

JSON

An information disclosure vulnerability exists when Visual Studio improperly parses XML input in certain settings files, aka ‘Visual Studio Information Disclosure Vulnerability’.

Affected configurations

NVD
Node
microsoftvisual_studioMatch2010sp1
OR
microsoftvisual_studioMatch2012update_5
OR
microsoftvisual_studioMatch2013update_5
OR
microsoftvisual_studioMatch2015update_3

Related

prion 1
cvelist 1
symantec 1
cve 1
mskb 4
mscve 1
nessus 1
kaspersky 1
talosblog 1
prion
prion
Information disclosure
2019-07-15 19:15:00
cvelist
cvelist
CVE-2019-1079
2019-07-15 18:56:20
symantec
symantec
Microsoft Visual Studio CVE-2019-1079 XML External Entity Information Disclosure Vulnerability
2019-07-09 00:00:00
cve
cve
CVE-2019-1079
2019-07-15 19:15:17
mskb
mskb
Description of the security update for the information disclosure vulnerability in Microsoft Visual Studio 2010 Service Pack 1: July 9, 2019
2019-07-09 07:00:00
Description of the security update for the information disclosure vulnerability in Microsoft Visual Studio 2013 Update 5: July 9, 2019
2019-07-09 07:00:00
Description of the security update for the information disclosure vulnerability in Microsoft Visual Studio 2015 Update 3: July 9, 2019
2019-07-09 07:00:00
mscve
mscve
Visual Studio Information Disclosure Vulnerability
2019-07-09 07:00:00
nessus
nessus
Security Updates for Microsoft Visual Studio Products (July 2019)
2019-07-11 00:00:00
kaspersky
kaspersky
KLA11513 Multiple vulnerabilities in Microsoft Developer Tools
2019-07-09 00:00:00
talosblog
talosblog
Microsoft Patch Tuesday — July 2019: Vulnerability disclosures and Snort coverage
2019-07-09 11:51:34

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

6 Medium

AI Score

Confidence

High

0.019 Low

EPSS

Percentile

88.7%

JSON
Related for NVD:CVE-2019-1079
prion1cvelist1symantec1cve1mskb4mscve1nessus1kaspersky1talosblog1