Lucene search
K
MicrosoftVisual Studio 2017-

8 matches found

CVE
CVE
added 2018/08/15 5:0 p.m.302 views

CVE-2018-0952

CVE-2018-0952 is a local Elevation of Privilege vulnerability in Diagnostics Hub Standard Collector (used by Windows Diagnostics Hub and Visual Studio components). The root cause, as documented, is the ability to create arbitrary files due to lack of proper client impersonation in DiagnosticsHub....

7.8CVSS7.9AI score0.06232EPSS
In wild
CVE
CVE
added 2019/07/29 2:9 p.m.209 views

CVE-2019-1113

CVE-2019-1113 is a remote code execution vulnerability in .NET software where the product fails to check the source markup of a file. The root cause is the failure to validate the source markup, which could allow an attacker to run arbitrary code in the context of the current user. The vulnerabil...

8.8CVSS8.3AI score0.09996EPSS
CVE
CVE
added 2019/03/06 12:0 a.m.170 views

CVE-2019-0657

Summary: CVE-2019-0657 is referenced across multiple sources as the".NET Core NuGet Tampering Vulnerability". Connected items (ALT Linux package advisories) cite CVE-2019-0657 in security fixes for various dotnet-bootstrap packages (versions 2.1.9-alt1 across 3.1, 5.0, 6.0, 7.0 series). The advis...

5.9CVSS6.7AI score0.04518EPSS
CVE
CVE
added 2019/04/09 1:51 a.m.166 views

CVE-2019-0757

CVE-2019-0757 is a Tampering Vulnerability in the NuGet Package Manager for Linux and macOS. The issue allows an authenticated attacker to modify a NuGet package’s folder structure (NuGet Package Manager Tampering Vulnerability). Public sources in connected documents indicate this affects .NET Co...

6.5CVSS6.1AI score0.02696EPSS
CVE
CVE
added 2019/03/06 12:0 a.m.153 views

CVE-2019-0613

CVE-2019-0613 affects Microsoft .NET Framework and Visual Studio. The vulnerability arises when the software fails to validate the source markup of a file, allowing remote code execution in the context of the current user. CVSS data from NVD indicates a network-exposed, high-severity issue (v3 ba...

9.3CVSS9.3AI score0.15421EPSS
CVE
CVE
added 2018/07/11 12:0 a.m.148 views

CVE-2018-8172

The CVE-2018-8172 entry pertains to a remote code execution vulnerability in Visual Studio family (including Visual Studio and Expression Blend) where the product fails to validate the source markup of an unbuilt project file. Root cause: improper handling of source markup in unbuilt files leadin...

9.3CVSS7.9AI score0.31016EPSS
CVE
CVE
added 2019/08/14 8:55 p.m.97 views

CVE-2019-1211

CVE-2019-1211 is an elevation of privilege vulnerability in Git for Visual Studio stemming from improper parsing of Git configuration files. The authenticated attacker could modify configuration files before full installation and then convince another user to run specific Git commands, executing ...

7.3CVSS7.5AI score0.01654EPSS
CVE
CVE
added 2018/07/11 12:0 a.m.93 views

CVE-2018-8232

The CVE-2018-8232 entry refers to a Tampering vulnerability in Microsoft Macro Assembler within Microsoft Visual Studio. The root cause, as documented by multiple sources, is improper validation of code in Macro Assembler, with Microsoft’s security updates addressing the issue by ensuring proper ...

7.8CVSS7.5AI score0.01085EPSS