CVE-2018-8172
published 2018-07-11CVE-2018-8172: A remote code execution vulnerability exists in Visual Studio software when the software does not check the source markup of a file for an unbuilt project, aka…
high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
A remote code execution vulnerability exists in Visual Studio software when the software does not check the source markup of a file for an unbuilt project, aka "Visual Studio Remote Code Execution Vulnerability." This affects Microsoft Visual Studio, Expression Blend 4.
Affected
25 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | expression_blend | — | — |
| microsoft | expression_blend | — | — |
| microsoft | expression_blend | — | — |
| microsoft | expression_blend_4 | — | — |
| microsoft | microsoft_visual_studio | — | — |
| microsoft | microsoft_visual_studio | — | — |
| microsoft | microsoft_visual_studio | — | — |
| microsoft | microsoft_visual_studio | — | — |
| microsoft | microsoft_visual_studio | — | — |
| microsoft | microsoft_visual_studio | — | — |
| microsoft | microsoft_visual_studio | — | — |
| microsoft | visual_studio | — | — |
| microsoft | visual_studio | — | — |
| microsoft | visual_studio | — | — |
| microsoft | visual_studio | — | — |
| microsoft | visual_studio_2017 | — | — |
| msrc | expression_blend_2_service_pack_2 | — | — |
| msrc | expression_blend_3_service_pack_1 | — | — |
| msrc | expression_blend_4_service_pack_3 | — | — |
| msrc | microsoft_visual_studio_2010_service_pack_1 | — | — |
| msrc | microsoft_visual_studio_2012_update_5 | — | — |
| msrc | microsoft_visual_studio_2013_update_5 | — | — |
| msrc | microsoft_visual_studio_2015_update_3 | — | — |
| msrc | microsoft_visual_studio_2017 | — | — |
| msrc | microsoft_visual_studio_2017_version_15.7.5 | — | — |