Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
MicrosoftVisual Studio 2017

95 matches found

CVE
CVEadded 2020/09/11 5:15 p.m.117 views

CVE-2020-16856

<p>A remote code execution vulnerability exists in Visual Studio when it improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an a...

9.3CVSS7.9AI score0.04489EPSS
CVE
CVEadded 2018/07/11 12:29 a.m.114 views

CVE-2018-8172

A remote code execution vulnerability exists in Visual Studio software when the software does not check the source markup of a file for an unbuilt project, aka "Visual Studio Remote Code Execution Vulnerability." This affects Microsoft Visual Studio, Expression Blend 4.

9.3CVSS7.9AI score0.24612EPSS
CVE
CVEadded 2020/09/11 5:15 p.m.114 views

CVE-2020-1130

<p>An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector improperly handles data operations. An attacker who successfully exploited this vulnerability could run processes in an elevated context.</p><p>An attacker could exploit this vulnerability by running a spe...

7.8CVSS7.2AI score0.00694EPSS
CVE
CVEadded 2018/12/12 12:29 a.m.113 views

CVE-2018-8599

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector Service improperly impersonates certain file operations, aka "Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability." This affects Microsoft Visual Studio, Windows Server 2019, Windo...

7.8CVSS8.4AI score0.00442EPSS
CVE
CVEadded 2024/07/09 5:15 p.m.113 views

CVE-2024-35272

SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

8.8CVSS9AI score0.10421EPSS
CVE
CVEadded 2020/06/09 8:15 p.m.111 views

CVE-2020-1202

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector or the Visual Studio Standard Collector fail to properly handle objects in memory, aka 'Diagnostic Hub Standard Collector Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1203.

7.8CVSS8AI score0.00744EPSS
CVE
CVEadded 2022/08/09 8:15 p.m.111 views

CVE-2022-35826

Visual Studio Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.02005EPSS
CVE
CVEadded 2023/02/14 9:15 p.m.111 views

CVE-2023-21566

Visual Studio Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00627EPSS
CVE
CVEadded 2020/05/21 11:15 p.m.110 views

CVE-2020-1161

A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka 'ASP.NET Core Denial of Service Vulnerability'.

7.5CVSS7.3AI score0.03721EPSS
CVE
CVEadded 2021/01/12 8:15 p.m.110 views

CVE-2021-1651

Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00462EPSS
CVE
CVEadded 2021/04/13 8:15 p.m.109 views

CVE-2021-28321

Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.01106EPSS
CVE
CVEadded 2020/03/12 4:15 p.m.108 views

CVE-2020-0810

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector or the Visual Studio Standard Collector allows file creation in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system.An attacker could then run a specially cr...

7.8CVSS8.6AI score0.00404EPSS
CVE
CVEadded 2020/07/14 11:15 p.m.106 views

CVE-2020-1393

An elevation of privilege vulnerability exists when the Windows Diagnostics Hub Standard Collector Service fails to properly sanitize input, leading to an unsecure library-loading behavior, aka 'Windows Diagnostics Hub Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1418.

7.8CVSS8AI score0.00709EPSS
CVE
CVEadded 2021/01/12 8:15 p.m.103 views

CVE-2021-1680

Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00347EPSS
CVE
CVEadded 2021/04/13 8:15 p.m.103 views

CVE-2021-28313

Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00674EPSS
CVE
CVEadded 2020/09/11 5:15 p.m.102 views

CVE-2020-16874

<p>A remote code execution vulnerability exists in Visual Studio when it improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an a...

9.3CVSS7.9AI score0.10178EPSS
CVE
CVEadded 2021/04/13 8:15 p.m.100 views

CVE-2021-28322

Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.00686EPSS
CVE
CVEadded 2021/09/15 12:15 p.m.98 views

CVE-2021-36952

Visual Studio Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.22111EPSS
CVE
CVEadded 2019/04/09 3:29 a.m.97 views

CVE-2019-0809

A remote code execution vulnerability exists when the Visual Studio C++ Redistributable Installer improperly validates input before loading dynamic link library (DLL) files, aka 'Visual Studio Remote Code Execution Vulnerability'.

7.8CVSS7.3AI score0.15092EPSS
CVE
CVEadded 2020/06/09 8:15 p.m.95 views

CVE-2020-1257

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector Service improperly handles file operations, aka 'Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1278, CVE-2020-1293.

7.8CVSS8.1AI score0.00694EPSS
CVE
CVEadded 2020/06/09 8:15 p.m.95 views

CVE-2020-1293

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector Service improperly handles file operations, aka 'Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1257, CVE-2020-1278.

7.8CVSS8.1AI score0.00694EPSS
CVE
CVEadded 2020/06/09 8:15 p.m.94 views

CVE-2020-1203

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector or the Visual Studio Standard Collector fail to properly handle objects in memory, aka 'Diagnostic Hub Standard Collector Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1202.

7.8CVSS8AI score0.00744EPSS
CVE
CVEadded 2022/11/09 10:15 p.m.93 views

CVE-2022-41119

Visual Studio Remote Code Execution Vulnerability

7.8CVSS7.8AI score0.00356EPSS
CVE
CVEadded 2024/10/08 6:15 p.m.93 views

CVE-2024-43603

Visual Studio Collector Service Denial of Service Vulnerability

5.5CVSS5.7AI score0.00166EPSS
CVE
CVEadded 2021/09/15 12:15 p.m.89 views

CVE-2021-26434

Visual Studio Elevation of Privilege Vulnerability

7.8CVSS7.5AI score0.00631EPSS
CVE
CVEadded 2021/04/13 8:15 p.m.89 views

CVE-2021-27064

Visual Studio Installer Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.00352EPSS
CVE
CVEadded 2018/04/12 1:29 a.m.87 views

CVE-2018-1037

An information disclosure vulnerability exists when Visual Studio improperly discloses limited contents of uninitialized memory while compiling program database (PDB) files, aka "Microsoft Visual Studio Information Disclosure Vulnerability." This affects Microsoft Visual Studio.

4.3CVSS3.9AI score0.06421EPSS
CVE
CVEadded 2020/03/12 4:15 p.m.85 views

CVE-2020-0793

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector Service improperly handles file operations, aka 'Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability'.

7.8CVSS8.5AI score0.00377EPSS
CVE
CVEadded 2020/06/09 8:15 p.m.85 views

CVE-2020-1278

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector Service improperly handles file operations, aka 'Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1257, CVE-2020-1293.

7.8CVSS8.1AI score0.00694EPSS
CVE
CVEadded 2020/04/15 3:15 p.m.82 views

CVE-2020-0899

An elevation of privilege vulnerability exists when Microsoft Visual Studio updater service improperly handles file permissions, aka 'Microsoft Visual Studio Elevation of Privilege Vulnerability'.

5.5CVSS6.8AI score0.0034EPSS
CVE
CVEadded 2023/02/14 9:15 p.m.82 views

CVE-2023-21567

Visual Studio Denial of Service Vulnerability

5.6CVSS5.8AI score0.00349EPSS
CVE
CVEadded 2019/08/14 9:15 p.m.81 views

CVE-2019-1211

An elevation of privilege vulnerability exists in Git for Visual Studio when it improperly parses configuration files. An attacker who successfully exploited the vulnerability could execute code in the context of another local user.To exploit the vulnerability, an authenticated attacker would need ...

7.3CVSS7AI score0.00644EPSS
CVE
CVEadded 2021/11/10 1:19 a.m.81 views

CVE-2021-42319

Visual Studio Elevation of Privilege Vulnerability

5.5CVSS4.9AI score0.00301EPSS
CVE
CVEadded 2018/07/11 12:29 a.m.75 views

CVE-2018-8232

A Tampering vulnerability exists when Microsoft Macro Assembler improperly validates code, aka "Microsoft Macro Assembler Tampering Vulnerability." This affects Microsoft Visual Studio.

7.8CVSS7.5AI score0.00289EPSS
CVE
CVEadded 2020/11/11 7:15 a.m.74 views

CVE-2020-17100

Visual Studio Tampering Vulnerability

5.5CVSS5.4AI score0.00451EPSS
CVE
CVEadded 2024/06/11 5:15 p.m.72 views

CVE-2024-29060

Visual Studio Elevation of Privilege Vulnerability

6.7CVSS6.8AI score0.00347EPSS
CVE
CVEadded 2025/03/11 5:16 p.m.72 views

CVE-2025-24998

Uncontrolled search path element in Visual Studio allows an authorized attacker to elevate privileges locally.

7.3CVSS7.2AI score0.00239EPSS
CVE
CVEadded 2020/03/12 4:15 p.m.70 views

CVE-2020-0884

A spoofing vulnerability exists in Microsoft Visual Studio as it includes a reply URL that is not secured by SSL, aka 'Microsoft Visual Studio Spoofing Vulnerability'.

4.3CVSS4.9AI score0.02187EPSS
CVE
CVEadded 2020/04/15 3:15 p.m.70 views

CVE-2020-0900

An elevation of privilege vulnerability exists when the Visual Studio Extension Installer Service improperly handles file operations, aka 'Visual Studio Extension Installer Service Elevation of Privilege Vulnerability'.

5.5CVSS6.8AI score0.00449EPSS
CVE
CVEadded 2025/02/11 6:15 p.m.70 views

CVE-2025-21206

Visual Studio Installer Elevation of Privilege Vulnerability

7.3CVSS7.4AI score0.00325EPSS
CVE
CVEadded 2019/01/08 9:29 p.m.69 views

CVE-2019-0546

A remote code execution vulnerability exists in Visual Studio when the C++ compiler improperly handles specific combinations of C++ constructs, aka "Visual Studio Remote Code Execution Vulnerability." This affects Microsoft Visual Studio.

9.3CVSS7.8AI score0.23647EPSS
CVE
CVEadded 2024/06/11 5:15 p.m.65 views

CVE-2024-30052

Visual Studio Remote Code Execution Vulnerability

4.7CVSS5.4AI score0.01398EPSS
CVE
CVEadded 2019/11/12 7:15 p.m.62 views

CVE-2019-1425

An elevation of privilege vulnerability exists when Visual Studio fails to properly validate hardlinks while extracting archived files, aka 'Visual Studio Elevation of Privilege Vulnerability'.

6.5CVSS6.4AI score0.07507EPSS
CVE
CVEadded 2025/05/13 5:16 p.m.51 views

CVE-2025-32703

Insufficient granularity of access control in Visual Studio allows an authorized attacker to disclose information locally.

5.5CVSS6.7AI score0.00054EPSS
CVE
CVEadded 2025/07/08 5:16 p.m.17 views

CVE-2025-49739

Improper link resolution before file access ('link following') in Visual Studio allows an unauthorized attacker to elevate privileges over a network.

8.8CVSS6.5AI score0.00049EPSS
Total number of security vulnerabilities95