CVE-2024-29060 Visual Studio Elevation of Privilege Vulnerability

2024-06-1116:59:48

CWE-284

microsoft

github.com

visual studio

privilege

vulnerability

cve-2024-29060

6.7 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:L/E:U/RL:O/RC:C

6.9 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

19.5%

JSON

CNA Affected

[
  {
    "cpes": [
      "cpe:2.3:a:microsoft:visual_studio:2022:*:*:*:*:*:*:*"
    ],
    "vendor": "Microsoft",
    "product": "Microsoft Visual Studio 2022 version 17.10",
    "versions": [
      {
        "status": "affected",
        "version": "17.10",
        "lessThan": "17.10.2",
        "versionType": "custom"
      }
    ],
    "platforms": [
      "Unknown"
    ]
  },
  {
    "cpes": [
      "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
    ],
    "vendor": "Microsoft",
    "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
    "versions": [
      {
        "status": "affected",
        "version": "15.9.0",
        "lessThan": "15.9.63",
        "versionType": "custom"
      }
    ],
    "platforms": [
      "Unknown"
    ]
  },
  {
    "cpes": [
      "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
    ],
    "vendor": "Microsoft",
    "product": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)",
    "versions": [
      {
        "status": "affected",
        "version": "16.11.0",
        "lessThan": "16.11.37",
        "versionType": "custom"
      }
    ],
    "platforms": [
      "Unknown"
    ]
  },
  {
    "cpes": [
      "cpe:2.3:a:microsoft:visual_studio_2022:17.4:*:*:*:*:*:*:*"
    ],
    "vendor": "Microsoft",
    "product": "Microsoft Visual Studio 2022 version 17.4",
    "versions": [
      {
        "status": "affected",
        "version": "17.4.0",
        "lessThan": "17.4.20",
        "versionType": "custom"
      }
    ],
    "platforms": [
      "Unknown"
    ]
  },
  {
    "cpes": [
      "cpe:2.3:a:microsoft:visual_studio:2022:*:*:*:*:*:*:*"
    ],
    "vendor": "Microsoft",
    "product": "Microsoft Visual Studio 2022 version 17.6",
    "versions": [
      {
        "status": "affected",
        "version": "17.6.0",
        "lessThan": "17.6.16",
        "versionType": "custom"
      }
    ],
    "platforms": [
      "Unknown"
    ]
  },
  {
    "cpes": [
      "cpe:2.3:a:microsoft:visual_studio:2022:*:*:*:*:*:*:*"
    ],
    "vendor": "Microsoft",
    "product": "Microsoft Visual Studio 2022 version 17.8",
    "versions": [
      {
        "status": "affected",
        "version": "17.8.0",
        "lessThan": "17.8.11",
        "versionType": "custom"
      }
    ],
    "platforms": [
      "Unknown"
    ]
  }
]