Visual Studio 2022 Security Vulnerabilities - 2023

CVE-2023-21566

Visual Studio Elevation of Privilege Vulnerability

CVE-2023-21567

Visual Studio Denial of Service Vulnerability

CVE-2023-21808

.NET and Visual Studio Remote Code Execution Vulnerability

CVE-2023-21815

Visual Studio Remote Code Execution Vulnerability

CVE-2023-23381

Visual Studio Remote Code Execution Vulnerability

CVE-2023-24895

.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

CVE-2023-24897

.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

CVE-2023-24936

.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability

CVE-2023-28260

.NET DLL Hijacking Remote Code Execution Vulnerability

CVE-2023-28262

Visual Studio Elevation of Privilege Vulnerability

CVE-2023-28263

Visual Studio Information Disclosure Vulnerability

CVE-2023-28296

Visual Studio Remote Code Execution Vulnerability

CVE-2023-28299

Visual Studio Spoofing Vulnerability

CVE-2023-29331

.NET, .NET Framework, and Visual Studio Denial of Service Vulnerability

CVE-2023-29349

Microsoft ODBC and OLE DB Remote Code Execution Vulnerability

CVE-2023-29356

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

CVE-2023-32025

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

CVE-2023-32026

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

CVE-2023-32027

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

CVE-2023-32028

Microsoft SQL OLE DB Remote Code Execution Vulnerability

CVE-2023-32032

.NET and Visual Studio Elevation of Privilege Vulnerability

CVE-2023-33126

.NET and Visual Studio Remote Code Execution Vulnerability

CVE-2023-33127

.NET and Visual Studio Elevation of Privilege Vulnerability

CVE-2023-33128

.NET and Visual Studio Remote Code Execution Vulnerability

CVE-2023-33135

.NET and Visual Studio Elevation of Privilege Vulnerability

CVE-2023-33139

Visual Studio Information Disclosure Vulnerability

CVE-2023-33170

ASP.NET and Visual Studio Security Feature Bypass Vulnerability

CVE-2023-35390

.NET and Visual Studio Remote Code Execution Vulnerability

CVE-2023-35391

ASP.NET Core SignalR and Visual Studio Information Disclosure Vulnerability

CVE-2023-36038

ASP.NET Core Denial of Service Vulnerability

CVE-2023-36042

Visual Studio Denial of Service Vulnerability

CVE-2023-36049

.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability

CVE-2023-36558

ASP.NET Core - Security Feature Bypass Vulnerability

CVE-2023-36758

Visual Studio Elevation of Privilege Vulnerability

CVE-2023-36759

Visual Studio Elevation of Privilege Vulnerability

CVE-2023-36792

Visual Studio Remote Code Execution Vulnerability

CVE-2023-36793

Visual Studio Remote Code Execution Vulnerability

CVE-2023-36794

Visual Studio Remote Code Execution Vulnerability

CVE-2023-36796

Visual Studio Remote Code Execution Vulnerability

CVE-2023-36799

.NET Core and Visual Studio Denial of Service Vulnerability

CVE-2023-36897

Visual Studio Tools for Office Runtime Spoofing Vulnerability

CVE-2023-38171

Microsoft QUIC Denial of Service Vulnerability

CVE-2023-38178

.NET Core and Visual Studio Denial of Service Vulnerability

CVE-2023-38180

.NET and Visual Studio Denial of Service Vulnerability

CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.