Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
MicrosoftVisual Studio 201916.0

108 matches found

CVE
CVEadded 2023/02/14 9:15 p.m.154 views

CVE-2023-21815

Visual Studio Remote Code Execution Vulnerability

7.8CVSS8.1AI score0.00386EPSS
CVE
CVEadded 2020/10/07 4:15 p.m.152 views

CVE-2020-26870

Cure53 DOMPurify before 2.0.17 allows mutation XSS. This occurs because a serialize-parse roundtrip does not necessarily return the original DOM tree, and a namespace can change from HTML to MathML, as demonstrated by nesting of FORM elements.

6.1CVSS6.1AI score0.0029EPSS
CVE
CVEadded 2022/01/11 9:15 p.m.151 views

CVE-2022-21871

Microsoft Diagnostics Hub Standard Collector Runtime Elevation of Privilege Vulnerability

7.8CVSS8AI score0.00379EPSS
CVE
CVEadded 2020/08/17 7:15 p.m.143 views

CVE-2020-1597

A denial of service vulnerability exists when ASP.NET Core improperly handles web requests. An attacker who successfully exploited this vulnerability could cause a denial of service against an ASP.NET Core web application. The vulnerability can be exploited remotely, without authentication.A remote...

7.5CVSS7.3AI score0.08489EPSS
CVE
CVEadded 2023/04/11 9:15 p.m.143 views

CVE-2023-28296

Visual Studio Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.01043EPSS
CVE
CVEadded 2019/07/15 7:15 p.m.142 views

CVE-2019-1077

An elevation of privilege vulnerability exists when the Visual Studio updater service improperly handles file permissions, aka 'Visual Studio Elevation of Privilege Vulnerability'.

6.6CVSS6.6AI score0.00959EPSS
CVE
CVEadded 2019/05/16 7:29 p.m.141 views

CVE-2019-0727

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector or the Visual Studio Standard Collector allows file deletion in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Diagnostic Hub Standard Collector, ...

7.8CVSS7.3AI score0.00327EPSS
CVE
CVEadded 2021/02/25 11:15 p.m.138 views

CVE-2021-1639

Visual Studio Code Remote Code Execution Vulnerability

7.8CVSS7AI score0.01254EPSS
CVE
CVEadded 2019/09/11 10:15 p.m.134 views

CVE-2019-1232

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector Service improperly impersonates certain file operations, aka 'Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability'.

7.8CVSS8AI score0.0037EPSS
CVE
CVEadded 2020/12/10 12:15 a.m.134 views

CVE-2020-17156

Visual Studio Remote Code Execution Vulnerability

7.8CVSS7.8AI score0.11473EPSS
CVE
CVEadded 2022/08/09 8:15 p.m.134 views

CVE-2022-35777

Visual Studio Remote Code Execution Vulnerability

8.8CVSS8.8AI score0.00224EPSS
CVE
CVEadded 2025/01/14 6:15 p.m.134 views

CVE-2025-21178

Visual Studio Remote Code Execution Vulnerability

8.8CVSS9AI score0.00596EPSS
CVE
CVEadded 2023/02/14 9:15 p.m.133 views

CVE-2023-23381

Visual Studio Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.00146EPSS
CVE
CVEadded 2023/06/14 12:15 a.m.133 views

CVE-2023-33139

Visual Studio Information Disclosure Vulnerability

5.5CVSS5.5AI score0.01135EPSS
CVE
CVEadded 2021/05/11 7:15 p.m.132 views

CVE-2021-27068

Visual Studio Remote Code Execution Vulnerability

8.8CVSS8.9AI score0.07694EPSS
CVE
CVEadded 2023/04/11 9:15 p.m.127 views

CVE-2023-28262

Visual Studio Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00183EPSS
CVE
CVEadded 2020/09/11 5:15 p.m.122 views

CVE-2020-1133

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector improperly handles file operations. An attacker who successfully exploited this vulnerability could run processes in an elevated context.An attacker could exploit this vulnerability by running a specially cra...

7.8CVSS6.7AI score0.00763EPSS
CVE
CVEadded 2020/09/11 5:15 p.m.118 views

CVE-2020-16856

A remote code execution vulnerability exists in Visual Studio when it improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an atta...

9.3CVSS7.9AI score0.05443EPSS
CVE
CVEadded 2020/09/11 5:15 p.m.115 views

CVE-2020-1130

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector improperly handles data operations. An attacker who successfully exploited this vulnerability could run processes in an elevated context.An attacker could exploit this vulnerability by running a specially cra...

7.8CVSS7.2AI score0.00694EPSS
CVE
CVEadded 2020/05/21 11:15 p.m.114 views

CVE-2020-1161

A denial of service vulnerability exists when ASP.NET Core improperly handles web requests, aka 'ASP.NET Core Denial of Service Vulnerability'.

7.5CVSS7.3AI score0.03721EPSS
CVE
CVEadded 2020/06/09 8:15 p.m.112 views

CVE-2020-1202

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector or the Visual Studio Standard Collector fail to properly handle objects in memory, aka 'Diagnostic Hub Standard Collector Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1203.

7.8CVSS8AI score0.00549EPSS
CVE
CVEadded 2023/02/14 9:15 p.m.112 views

CVE-2023-21566

Visual Studio Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00627EPSS
CVE
CVEadded 2020/03/12 4:15 p.m.111 views

CVE-2020-0810

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector or the Visual Studio Standard Collector allows file creation in arbitrary locations.To exploit the vulnerability, an attacker would first have to log on to the system.An attacker could then run a specially cr...

7.8CVSS8.6AI score0.00404EPSS
CVE
CVEadded 2021/01/12 8:15 p.m.111 views

CVE-2021-1651

Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00462EPSS
CVE
CVEadded 2021/04/13 8:15 p.m.110 views

CVE-2021-28321

Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.01106EPSS
CVE
CVEadded 2020/07/14 11:15 p.m.107 views

CVE-2020-1393

An elevation of privilege vulnerability exists when the Windows Diagnostics Hub Standard Collector Service fails to properly sanitize input, leading to an unsecure library-loading behavior, aka 'Windows Diagnostics Hub Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1418.

7.8CVSS8AI score0.00522EPSS
CVE
CVEadded 2021/04/13 8:15 p.m.105 views

CVE-2021-28313

Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00674EPSS
CVE
CVEadded 2021/01/12 8:15 p.m.104 views

CVE-2021-1680

Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00347EPSS
CVE
CVEadded 2020/09/11 5:15 p.m.103 views

CVE-2020-16874

A remote code execution vulnerability exists in Visual Studio when it improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an atta...

9.3CVSS7.9AI score0.12146EPSS
CVE
CVEadded 2021/04/13 8:15 p.m.101 views

CVE-2021-28322

Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.00686EPSS
CVE
CVEadded 2021/09/15 12:15 p.m.99 views

CVE-2021-36952

Visual Studio Remote Code Execution Vulnerability

7.8CVSS7.9AI score0.22111EPSS
CVE
CVEadded 2022/11/09 10:15 p.m.97 views

CVE-2022-41119

Visual Studio Remote Code Execution Vulnerability

7.8CVSS7.8AI score0.00399EPSS
CVE
CVEadded 2020/06/09 8:15 p.m.96 views

CVE-2020-1203

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector or the Visual Studio Standard Collector fail to properly handle objects in memory, aka 'Diagnostic Hub Standard Collector Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1202.

7.8CVSS8AI score0.00549EPSS
CVE
CVEadded 2020/06/09 8:15 p.m.96 views

CVE-2020-1257

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector Service improperly handles file operations, aka 'Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1278, CVE-2020-1293.

7.8CVSS8.1AI score0.00511EPSS
CVE
CVEadded 2020/06/09 8:15 p.m.96 views

CVE-2020-1293

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector Service improperly handles file operations, aka 'Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1257, CVE-2020-1278.

7.8CVSS8.1AI score0.00511EPSS
CVE
CVEadded 2023/04/11 9:15 p.m.94 views

CVE-2023-28263

Visual Studio Information Disclosure Vulnerability

5.5CVSS5.6AI score0.0027EPSS
CVE
CVEadded 2021/04/13 8:15 p.m.91 views

CVE-2021-27064

Visual Studio Installer Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.00352EPSS
CVE
CVEadded 2021/09/15 12:15 p.m.90 views

CVE-2021-26434

Visual Studio Elevation of Privilege Vulnerability

7.8CVSS7.5AI score0.00631EPSS
CVE
CVEadded 2020/03/12 4:15 p.m.86 views

CVE-2020-0793

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector Service improperly handles file operations, aka 'Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability'.

7.8CVSS8.5AI score0.00377EPSS
CVE
CVEadded 2020/06/09 8:15 p.m.86 views

CVE-2020-1278

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector Service improperly handles file operations, aka 'Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-1257, CVE-2020-1293.

7.8CVSS8.1AI score0.00511EPSS
CVE
CVEadded 2020/04/15 3:15 p.m.83 views

CVE-2020-0899

An elevation of privilege vulnerability exists when Microsoft Visual Studio updater service improperly handles file permissions, aka 'Microsoft Visual Studio Elevation of Privilege Vulnerability'.

5.5CVSS6.8AI score0.0034EPSS
CVE
CVEadded 2023/02/14 9:15 p.m.83 views

CVE-2023-21567

Visual Studio Denial of Service Vulnerability

5.6CVSS5.8AI score0.00349EPSS
CVE
CVEadded 2019/08/14 9:15 p.m.82 views

CVE-2019-1211

An elevation of privilege vulnerability exists in Git for Visual Studio when it improperly parses configuration files. An attacker who successfully exploited the vulnerability could execute code in the context of another local user.To exploit the vulnerability, an authenticated attacker would need ...

7.3CVSS7AI score0.00644EPSS
CVE
CVEadded 2021/11/10 1:19 a.m.82 views

CVE-2021-42319

Visual Studio Elevation of Privilege Vulnerability

5.5CVSS4.9AI score0.00319EPSS
CVE
CVEadded 2020/03/12 4:15 p.m.78 views

CVE-2020-0789

A denial of service vulnerability exists when the Visual Studio Extension Installer Service improperly handles hard links, aka 'Visual Studio Extension Installer Service Denial of Service Vulnerability'.

7.1CVSS6.9AI score0.00304EPSS
CVE
CVEadded 2020/11/11 7:15 a.m.75 views

CVE-2020-17100

Visual Studio Tampering Vulnerability

5.5CVSS5.4AI score0.00332EPSS
CVE
CVEadded 2025/03/11 5:16 p.m.75 views

CVE-2025-24998

Uncontrolled search path element in Visual Studio allows an authorized attacker to elevate privileges locally.

7.3CVSS7.2AI score0.00241EPSS
CVE
CVEadded 2024/06/11 5:15 p.m.73 views

CVE-2024-29060

Visual Studio Elevation of Privilege Vulnerability

6.7CVSS6.8AI score0.00258EPSS
CVE
CVEadded 2025/02/11 6:15 p.m.73 views

CVE-2025-21206

Visual Studio Installer Elevation of Privilege Vulnerability

7.3CVSS7.4AI score0.00506EPSS
CVE
CVEadded 2020/03/12 4:15 p.m.71 views

CVE-2020-0884

A spoofing vulnerability exists in Microsoft Visual Studio as it includes a reply URL that is not secured by SSL, aka 'Microsoft Visual Studio Spoofing Vulnerability'.

4.3CVSS4.9AI score0.02187EPSS
Total number of security vulnerabilities108