Visual Studio 2017 Security Vulnerabilities

CVE-2024-29060

Visual Studio Elevation of Privilege...

CVE-2024-30052

Visual Studio Remote Code Execution...

CVE-2024-20656

Visual Studio Elevation of Privilege...

CVE-2023-36796

Visual Studio Remote Code Execution...

CVE-2023-36793

Visual Studio Remote Code Execution...

CVE-2023-36792

Visual Studio Remote Code Execution...

CVE-2023-36794

Visual Studio Remote Code Execution...

CVE-2023-36897

Visual Studio Tools for Office Runtime Spoofing...

CVE-2023-24897

.NET, .NET Framework, and Visual Studio Remote Code Execution...

CVE-2023-33139

Visual Studio Information Disclosure...

CVE-2023-28299

Visual Studio Spoofing...

CVE-2023-28296

Visual Studio Remote Code Execution...

CVE-2023-23381

Visual Studio Remote Code Execution...

CVE-2023-21815

Visual Studio Remote Code Execution...

CVE-2023-21567

Visual Studio Denial of Service...

CVE-2023-21808

.NET and Visual Studio Remote Code Execution...

CVE-2023-21566

Visual Studio Elevation of Privilege...

CVE-2022-41119

Visual Studio Remote Code Execution...

CVE-2022-35826

Visual Studio Remote Code Execution...

CVE-2022-35827

Visual Studio Remote Code Execution...

CVE-2022-35825

Visual Studio Remote Code Execution...

CVE-2022-35777

Visual Studio Remote Code Execution...

CVE-2022-34716

.NET Spoofing...

CVE-2022-29148

Visual Studio Remote Code Execution...

CVE-2022-24513

Visual Studio Elevation of Privilege...

CVE-2022-24767

GitHub: Git for Windows' uninstaller vulnerable to DLL hijacking when run under the SYSTEM user...

CVE-2022-21871

Microsoft Diagnostics Hub Standard Collector Runtime Elevation of Privilege...

CVE-2021-42319

Visual Studio Elevation of Privilege...

CVE-2021-42277

Diagnostics Hub Standard Collector Elevation of Privilege...

CVE-2021-36952

Visual Studio Remote Code Execution...

CVE-2021-26434

Visual Studio Elevation of Privilege...

CVE-2021-34485

.NET Core and Visual Studio Information Disclosure...

CVE-2021-26423

.NET Core and Visual Studio Denial of Service...

CVE-2021-28322

Diagnostics Hub Standard Collector Service Elevation of Privilege...

CVE-2021-28313

Diagnostics Hub Standard Collector Service Elevation of Privilege...

CVE-2021-28321

Diagnostics Hub Standard Collector Service Elevation of Privilege...

CVE-2021-27064

Visual Studio Installer Elevation of Privilege...

CVE-2021-26701

.NET Core Remote Code Execution...

CVE-2021-1639

Visual Studio Code Remote Code Execution...

CVE-2021-1721

.NET Core and Visual Studio Denial of Service...

CVE-2021-1680

Diagnostics Hub Standard Collector Elevation of Privilege...

CVE-2021-1651

Diagnostics Hub Standard Collector Elevation of Privilege...

CVE-2020-17156

Visual Studio Remote Code Execution...

CVE-2020-17100

Visual Studio Tampering...

CVE-2020-26870

Cure53 DOMPurify before 2.0.17 allows mutation XSS. This occurs because a serialize-parse roundtrip does not necessarily return the original DOM tree, and a namespace can change from HTML to MathML, as demonstrated by nesting of FORM...

CVE-2020-1130

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector improperly handles data operations. An attacker who successfully exploited this vulnerability could run processes in an elevated context. An attacker could exploit this vulnerability by running a specially...

CVE-2020-1133

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector improperly handles file operations. An attacker who successfully exploited this vulnerability could run processes in an elevated context. An attacker could exploit this vulnerability by running a specially...

CVE-2020-16874

A remote code execution vulnerability exists in Visual Studio when it improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an...

CVE-2020-16856

A remote code execution vulnerability exists in Visual Studio when it improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an...

CVE-2020-1597

A denial of service vulnerability exists when ASP.NET Core improperly handles web requests. An attacker who successfully exploited this vulnerability could cause a denial of service against an ASP.NET Core web application. The vulnerability can be exploited remotely, without authentication. A...