Visual Studio 2019@16.8 Security Vulnerabilities and Issues — Visual Studio 2019@16.8 CVE List

Cure53 DOMPurify before 2.0.17 allows mutation XSS. This occurs because a serialize-parse roundtrip does not necessarily return the original DOM tree, and a namespace can change from HTML to MathML, as demonstrated by nesting of FORM elements.

6.1CVSS6.1AI score0.0029EPSS

CVE•added 2022/01/11 9:15 p.m.•151 views

CVE-2022-21871

Microsoft Diagnostics Hub Standard Collector Runtime Elevation of Privilege Vulnerability

7.8CVSS8AI score0.00379EPSS

CVE•added 2021/02/25 11:15 p.m.•138 views

CVE-2021-1639

Visual Studio Code Remote Code Execution Vulnerability

7.8CVSS7AI score0.01254EPSS

CVE•added 2020/12/10 12:15 a.m.•134 views

CVE-2020-17156

Visual Studio Remote Code Execution Vulnerability

7.8CVSS7.8AI score0.11473EPSS

CVE•added 2021/01/12 8:15 p.m.•111 views

CVE-2021-1651

Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00462EPSS

CVE•added 2021/04/13 8:15 p.m.•110 views

CVE-2021-28321

Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.01106EPSS

CVE•added 2021/04/13 8:15 p.m.•105 views

CVE-2021-28313

Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability

7.8CVSS7.7AI score0.00674EPSS

CVE•added 2021/01/12 8:15 p.m.•104 views

CVE-2021-1680

Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability

7.8CVSS8.1AI score0.00347EPSS

CVE•added 2021/04/13 8:15 p.m.•101 views

CVE-2021-28322

Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability

7.8CVSS7.8AI score0.00686EPSS

CVE•added 2021/04/13 8:15 p.m.•91 views

CVE-2021-27064

Visual Studio Installer Elevation of Privilege Vulnerability

7.8CVSS7.6AI score0.00352EPSS

CVE•added 2020/11/11 7:15 a.m.•75 views

CVE-2020-17100

Visual Studio Tampering Vulnerability

5.5CVSS5.4AI score0.00332EPSS