CVE-2023-33127
published 2023-07-11CVE-2023-33127: .NET and Visual Studio Elevation of Privilege Vulnerability
high8.1CVSS 3.1
AVNACHPRNUINSUCHIHAH
.NET and Visual Studio Elevation of Privilege Vulnerability
Affected
23 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | microsoft_visual_studio_2022_version_17.0 | >= 17.0.0 < 17.0.23 | 17.0.23 |
| microsoft | microsoft_visual_studio_2022_version_17.2 | >= 17.2.0 < 17.2.17 | 17.2.17 |
| microsoft | microsoft_visual_studio_2022_version_17.4 | >= 17.4.0 < 17.4.9 | 17.4.9 |
| microsoft | microsoft_visual_studio_2022_version_17.6 | >= 17.6.0 < 17.6.5 | 17.6.5 |
| microsoft | net | >= 6.0.0 < 6.0.20 | 6.0.20 |
| microsoft | net | >= 7.0.0 < 7.0.9 | 7.0.9 |
| microsoft | net_6.0 | >= 6.0.0 < 6.0.20 | 6.0.20 |
| microsoft | net_7.0 | >= 7.0.0 < 7.0.9 | 7.0.9 |
| microsoft | powershell_7.2 | >= 7.2.0 < 7.2.13 | 7.2.13 |
| microsoft | powershell_7.3 | >= 7.3.0 < 7.3.6 | 7.3.6 |
| microsoft | visual_studio_2022 | — | — |
| microsoft | visual_studio_2022 | >= 17.0 < 17.0.23 | 17.0.23 |
| microsoft | visual_studio_2022 | >= 17.2.0 < 17.2.17 | 17.2.17 |
| microsoft | visual_studio_2022 | >= 17.4.0 < 17.4.9 | 17.4.9 |
| microsoft | visual_studio_2022 | >= 17.6.0 < 17.6.5 | 17.6.5 |
| msrc | microsoft_visual_studio_2022_version_17.0 | — | — |
| msrc | microsoft_visual_studio_2022_version_17.2 | — | — |
| msrc | microsoft_visual_studio_2022_version_17.4 | — | — |
| msrc | microsoft_visual_studio_2022_version_17.6 | — | — |
| msrc | net_6.0 | — | — |
| msrc | net_7.0 | — | — |
| msrc | powershell_7.2 | — | — |
| msrc | powershell_7.3 | — | — |
CVSS provenance
nvdv3.18.1HIGHCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
ghsa8.1HIGH
osv8.1HIGH