Lucene search

K
MicrosoftVisual Studio

91 matches found

CVE
CVE
added 2020/07/14 11:15 p.m.1271 views

CVE-2020-1147

A remote code execution vulnerability exists in .NET Framework, Microsoft SharePoint, and Visual Studio when the software fails to check the source markup of XML file input, aka '.NET Framework, SharePoint Server, and Visual Studio Remote Code Execution Vulnerability'.

7.8CVSS8.1AI score0.92846EPSS
CVE
CVE
added 2025/01/14 6:15 p.m.1065 views

CVE-2025-21176

.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

8.8CVSS9AI score0.00528EPSS
CVE
CVE
added 2023/09/12 5:15 p.m.470 views

CVE-2023-36796

Visual Studio Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.01EPSS
CVE
CVE
added 2021/02/25 11:15 p.m.400 views

CVE-2021-26701

.NET Core Remote Code Execution Vulnerability

9.8CVSS8.5AI score0.01745EPSS
CVE
CVE
added 2025/01/14 6:15 p.m.386 views

CVE-2025-21172

.NET and Visual Studio Remote Code Execution Vulnerability

7.5CVSS7.8AI score0.00174EPSS
CVE
CVE
added 2021/02/25 11:15 p.m.275 views

CVE-2021-24112

.NET Core Remote Code Execution Vulnerability

9.8CVSS9.1AI score0.00755EPSS
CVE
CVE
added 2009/07/29 5:30 p.m.258 views

CVE-2009-0901

The Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 and 2008 Gold, and Visual C++ 2005 SP1 and 2008 Gold and SP1; and Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2; does not prevent VariantCle...

9.3CVSS7.4AI score0.6425EPSS
CVE
CVE
added 2018/08/15 5:29 p.m.244 views

CVE-2018-0952

An Elevation of Privilege vulnerability exists when Diagnostics Hub Standard Collector allows file creation in arbitrary locations, aka "Diagnostic Hub Standard Collector Elevation Of Privilege Vulnerability." This affects Windows Server 2016, Windows 10, Microsoft Visual Studio, Windows 10 Servers...

7.8CVSS7.9AI score0.39182EPSS
CVE
CVE
added 2022/08/09 8:15 p.m.240 views

CVE-2022-35827

Visual Studio Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.02005EPSS
CVE
CVE
added 2020/01/24 9:15 p.m.233 views

CVE-2019-1349

A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1350, CVE-2019-1352, CVE-2019-1354, CVE-2019-1387.

9.3CVSS9.2AI score0.23733EPSS
CVE
CVE
added 2020/01/24 9:15 p.m.233 views

CVE-2019-1352

A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1349, CVE-2019-1350, CVE-2019-1354, CVE-2019-1387.

9.3CVSS9.2AI score0.23733EPSS
CVE
CVE
added 2023/02/14 9:15 p.m.231 views

CVE-2023-21808

.NET and Visual Studio Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.0141EPSS
CVE
CVE
added 2024/01/09 6:15 p.m.216 views

CVE-2024-20656

Visual Studio Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.57016EPSS
CVE
CVE
added 2020/05/21 11:15 p.m.214 views

CVE-2020-1108

A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests, aka '.NET Core & .NET Framework Denial of Service Vulnerability'.

7.5CVSS7.3AI score0.02352EPSS
CVE
CVE
added 2020/01/24 9:15 p.m.209 views

CVE-2019-1354

A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1349, CVE-2019-1350, CVE-2019-1352, CVE-2019-1387.

9.3CVSS9.2AI score0.23733EPSS
CVE
CVE
added 2020/07/14 11:15 p.m.208 views

CVE-2020-1416

An elevation of privilege vulnerability exists in Visual Studio and Visual Studio Code when they load software dependencies, aka 'Visual Studio and Visual Studio Code Elevation of Privilege Vulnerability'.

9.3CVSS8.7AI score0.10481EPSS
CVE
CVE
added 2023/06/14 3:15 p.m.197 views

CVE-2023-24897

.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.01678EPSS
CVE
CVE
added 2020/01/24 9:15 p.m.196 views

CVE-2019-1350

A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1349, CVE-2019-1352, CVE-2019-1354, CVE-2019-1387.

9.3CVSS9.2AI score0.23733EPSS
CVE
CVE
added 2010/08/31 8:0 p.m.186 views

CVE-2010-3190

Untrusted search path vulnerability in the Microsoft Foundation Class (MFC) Library in Microsoft Visual Studio .NET 2003 SP1; Visual Studio 2005 SP1, 2008 SP1, and 2010; Visual C++ 2005 SP1, 2008 SP1, and 2010; and Exchange Server 2010 Service Pack 3, 2013, and 2013 allows local users to gain privi...

9.3CVSS7.4AI score0.50112EPSS
CVE
CVE
added 2019/07/29 2:9 p.m.180 views

CVE-2019-1113

A remote code execution vulnerability exists in .NET software when the software fails to check the source markup of a file.An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user, aka '.NET Framework Remote Code Execution Vulnerability'.

8.8CVSS8.3AI score0.27594EPSS
CVE
CVE
added 2020/01/24 9:15 p.m.180 views

CVE-2019-1351

A tampering vulnerability exists when Git for Visual Studio improperly handles virtual drive paths, aka 'Git for Visual Studio Tampering Vulnerability'.

7.5CVSS8.3AI score0.17105EPSS
CVE
CVE
added 2009/07/29 5:30 p.m.173 views

CVE-2009-2493

The Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 and 2008 Gold and SP1, and Visual C++ 2005 SP1 and 2008 Gold and SP1; and Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2; does not properly r...

9.3CVSS7.2AI score0.47797EPSS
CVE
CVE
added 2021/11/10 1:19 a.m.169 views

CVE-2021-42277

Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability

7.8CVSS6.5AI score0.00284EPSS
CVE
CVE
added 2009/07/29 5:30 p.m.158 views

CVE-2009-2495

The Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 and 2008 Gold and SP1, and Visual C++ 2005 SP1 and 2008 Gold and SP1 does not properly enforce string termination, which allows remote attackers to obtain sensitive information via a crafted HTML docu...

7.8CVSS5.9AI score0.42541EPSS
CVE
CVE
added 2012/03/13 9:55 p.m.152 views

CVE-2012-0008

Untrusted search path vulnerability in Microsoft Visual Studio 2008 SP1, 2010, and 2010 SP1 allows local users to gain privileges via a Trojan horse add-in in an unspecified directory, aka "Visual Studio Add-In Vulnerability."

6.9CVSS6.4AI score0.0294EPSS
CVE
CVE
added 2023/02/14 9:15 p.m.152 views

CVE-2023-21815

Visual Studio Remote Code Execution Vulnerability

7.8CVSS8.1AI score0.00386EPSS
CVE
CVE
added 2011/06/16 8:55 p.m.150 views

CVE-2011-1280

The XML Editor in Microsoft InfoPath 2007 SP2 and 2010; SQL Server 2005 SP3 and SP4 and 2008 SP1, SP2, and R2; SQL Server Management Studio Express (SSMSE) 2005; and Visual Studio 2005 SP1, 2008 SP1, and 2010 does not properly handle external entities, which allows remote attackers to read arbitrar...

4.3CVSS7AI score0.33585EPSS
CVE
CVE
added 2022/01/11 9:15 p.m.149 views

CVE-2022-21871

Microsoft Diagnostics Hub Standard Collector Runtime Elevation of Privilege Vulnerability

7.8CVSS8AI score0.00379EPSS
CVE
CVE
added 2019/03/06 12:0 a.m.143 views

CVE-2019-0657

A vulnerability exists in certain .Net Framework API's and Visual Studio in the way they parse URL's, aka '.NET Framework and Visual Studio Spoofing Vulnerability'.

5.9CVSS6.7AI score0.0553EPSS
CVE
CVE
added 2019/07/15 7:15 p.m.141 views

CVE-2019-1077

An elevation of privilege vulnerability exists when the Visual Studio updater service improperly handles file permissions, aka 'Visual Studio Elevation of Privilege Vulnerability'.

6.6CVSS6.6AI score0.00959EPSS
CVE
CVE
added 2019/05/16 7:29 p.m.140 views

CVE-2019-0727

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector or the Visual Studio Standard Collector allows file deletion in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Diagnostic Hub Standard Collector, ...

7.8CVSS7.3AI score0.00327EPSS
CVE
CVE
added 2019/04/09 2:29 a.m.134 views

CVE-2019-0757

A tampering vulnerability exists in the NuGet Package Manager for Linux and Mac that could allow an authenticated attacker to modify a NuGet package's folder structure, aka 'NuGet Package Manager Tampering Vulnerability'.

6.5CVSS6.1AI score0.08184EPSS
CVE
CVE
added 2009/10/14 10:30 a.m.133 views

CVE-2009-2528

GDI+ in Microsoft Office XP SP3 does not properly handle malformed objects in Office Art Property Tables, which allows remote attackers to execute arbitrary code via a crafted Office document that triggers memory corruption, aka "Memory Corruption Vulnerability."

9.3CVSS7.2AI score0.43234EPSS
CVE
CVE
added 2019/09/11 10:15 p.m.133 views

CVE-2019-1232

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector Service improperly impersonates certain file operations, aka 'Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability'.

7.8CVSS8AI score0.0037EPSS
CVE
CVE
added 2022/08/09 8:15 p.m.132 views

CVE-2022-35777

Visual Studio Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.00129EPSS
CVE
CVE
added 2023/06/14 12:15 a.m.132 views

CVE-2023-33139

Visual Studio Information Disclosure Vulnerability

5.5CVSS5.5AI score0.01135EPSS
CVE
CVE
added 2025/01/14 6:15 p.m.130 views

CVE-2025-21178

Visual Studio Remote Code Execution Vulnerability

8.8CVSS9AI score0.00528EPSS
CVE
CVE
added 2023/02/14 9:15 p.m.129 views

CVE-2023-23381

Visual Studio Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.00146EPSS
CVE
CVE
added 2019/07/15 7:15 p.m.124 views

CVE-2019-1079

An information disclosure vulnerability exists when Visual Studio improperly parses XML input in certain settings files, aka 'Visual Studio Information Disclosure Vulnerability'.

6.5CVSS6.7AI score0.25343EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.121 views

CVE-2020-1133

<p>An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector improperly handles file operations. An attacker who successfully exploited this vulnerability could run processes in an elevated context.</p><p>An attacker could exploit this vulnerability by running a spe...

7.8CVSS6.7AI score0.00763EPSS
CVE
CVE
added 2019/01/08 9:29 p.m.120 views

CVE-2019-0537

An information disclosure vulnerability exists when Visual Studio improperly discloses arbitrary file contents if the victim opens a malicious .vscontent file, aka "Microsoft Visual Studio Information Disclosure Vulnerability." This affects Microsoft Visual Studio.

5.5CVSS5.1AI score0.26918EPSS
CVE
CVE
added 2009/10/14 10:30 a.m.119 views

CVE-2009-2500

Integer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Office Project 2002 SP1, Visio 2002 SP2, Office Word Viewer, Word Viewer 2003 Gold and SP3, Office Excel Viewer 2003 Gold and SP3, Office ...

9.3CVSS7.9AI score0.54154EPSS
CVE
CVE
added 2009/10/14 10:30 a.m.119 views

CVE-2009-3126

Integer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Office XP SP3, Office 2003 SP3, 2007 Microsoft Office System SP1 and SP2, Office Project 2002 SP1, Visio 2002 SP2, Office Word Viewer, Word Viewer 2003 Gold and SP3, Office Excel Viewer 2003 Gold and SP3, Office ...

9.3CVSS9.7AI score0.48214EPSS
CVE
CVE
added 2019/03/06 12:0 a.m.119 views

CVE-2019-0613

A remote code execution vulnerability exists in .NET Framework and Visual Studio software when the software fails to check the source markup of a file.An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user, aka '.NET Framework and Visual...

9.3CVSS9.3AI score0.20489EPSS
CVE
CVE
added 2022/08/09 8:15 p.m.118 views

CVE-2022-35825

Visual Studio Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.02005EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.117 views

CVE-2020-16856

<p>A remote code execution vulnerability exists in Visual Studio when it improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an a...

9.3CVSS7.9AI score0.04489EPSS
CVE
CVE
added 2018/07/11 12:29 a.m.114 views

CVE-2018-8172

A remote code execution vulnerability exists in Visual Studio software when the software does not check the source markup of a file for an unbuilt project, aka "Visual Studio Remote Code Execution Vulnerability." This affects Microsoft Visual Studio, Expression Blend 4.

9.3CVSS7.9AI score0.24612EPSS
CVE
CVE
added 2020/09/11 5:15 p.m.114 views

CVE-2020-1130

<p>An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector improperly handles data operations. An attacker who successfully exploited this vulnerability could run processes in an elevated context.</p><p>An attacker could exploit this vulnerability by running a spe...

7.8CVSS7.2AI score0.00694EPSS
CVE
CVE
added 2018/12/12 12:29 a.m.113 views

CVE-2018-8599

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector Service improperly impersonates certain file operations, aka "Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability." This affects Microsoft Visual Studio, Windows Server 2019, Windo...

7.8CVSS8.4AI score0.00442EPSS
CVE
CVE
added 2020/06/09 8:15 p.m.111 views

CVE-2020-1202

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector or the Visual Studio Standard Collector fail to properly handle objects in memory, aka 'Diagnostic Hub Standard Collector Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1203.

7.8CVSS8AI score0.00744EPSS
Total number of security vulnerabilities91