Microsoft Visual Studio 2019 vulnerabilities

92 known vulnerabilities affecting microsoft/visual_studio_2019.

Total CVEs

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

HIGH68MEDIUM23LOW1

Vulnerabilities

Page 2 of 5

CVE-2024-28936HIGHCVSS 8.8≥ 16.0, < 16.11.352024-04-09

CVE-2024-28936 [HIGH] CWE-190 CVE-2024-28936: Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2024-20656HIGHCVSS 7.8≥ 16.0, < 16.11.332024-01-09

CVE-2024-20656 [HIGH] CWE-59 CVE-2024-20656: Visual Studio Elevation of Privilege Vulnerability Visual Studio Elevation of Privilege Vulnerability

nvd

CVE-2023-36759MEDIUMCVSS 6.7≥ 16.0, < 16.11.302023-09-12

CVE-2023-36759 [MEDIUM] CWE-822 CVE-2023-36759: Visual Studio Elevation of Privilege Vulnerability Visual Studio Elevation of Privilege Vulnerability

nvd

CVE-2023-36897HIGHCVSS 8.1≥ 16.0, < 16.11.292023-08-08

CVE-2023-36897 [HIGH] CWE-20 CVE-2023-36897: Visual Studio Tools for Office Runtime Spoofing Vulnerability Visual Studio Tools for Office Runtime Spoofing Vulnerability

nvd

CVE-2023-24897HIGHCVSS 7.8≥ 16.0, ≤ 16.10≥ 16.11, < 16.11.272023-06-14

CVE-2023-24897 [HIGH] CWE-122 CVE-2023-24897: .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

nvd

CVE-2023-33139MEDIUMCVSS 5.5≥ 16.0, ≤ 16.10≥ 16.11, < 16.11.272023-06-14

CVE-2023-33139 [MEDIUM] CWE-125 CVE-2023-33139: Visual Studio Information Disclosure Vulnerability Visual Studio Information Disclosure Vulnerability

nvd

CVE-2023-28262HIGHCVSS 7.8≥ 16.0, < 16.11.262023-04-11

CVE-2023-28262 [HIGH] CWE-122 CVE-2023-28262: Visual Studio Elevation of Privilege Vulnerability Visual Studio Elevation of Privilege Vulnerability

nvd

CVE-2023-28263MEDIUMCVSS 5.5≥ 16.0, < 16.11.262023-04-11

CVE-2023-28263 [MEDIUM] CWE-170 CVE-2023-28263: Visual Studio Information Disclosure Vulnerability Visual Studio Information Disclosure Vulnerability

nvd

CVE-2023-21808HIGHCVSS 7.8≥ 16.0, < 16.11.242023-02-14

CVE-2023-21808 [HIGH] CWE-416 CVE-2023-21808: .NET and Visual Studio Remote Code Execution Vulnerability .NET and Visual Studio Remote Code Execution Vulnerability

nvd

CVE-2023-21566HIGHCVSS 7.8≥ 16.0, < 16.11.242023-02-14

CVE-2023-21566 [HIGH] CWE-73 CVE-2023-21566: Visual Studio Elevation of Privilege Vulnerability Visual Studio Elevation of Privilege Vulnerability

nvd

CVE-2022-38013HIGHCVSS 7.5v16.9v16.112022-09-13

CVE-2022-38013 [HIGH] CVE-2022-38013: .NET Core and Visual Studio Denial of Service Vulnerability .NET Core and Visual Studio Denial of Service Vulnerability

nvd

CVE-2022-30184MEDIUMCVSS 5.5≥ 16.0, < 16.9.22≥ 16.10, < 16.11.6+1 more2022-06-15

CVE-2022-30184 [MEDIUM] CWE-200 CVE-2022-30184: .NET and Visual Studio Information Disclosure Vulnerability .NET and Visual Studio Information Disclosure Vulnerability

nvd

CVE-2022-29145HIGHCVSS 7.5≥ 16.0, < 16.9.21≥ 16.10, < 16.11.142022-05-10

CVE-2022-29145 [HIGH] CVE-2022-29145: .NET and Visual Studio Denial of Service Vulnerability .NET and Visual Studio Denial of Service Vulnerability

nvd

CVE-2022-23267HIGHCVSS 7.5≥ 16.0, < 16.9.21≥ 16.10, < 16.11.142022-05-10

CVE-2022-23267 [HIGH] CVE-2022-23267: .NET and Visual Studio Denial of Service Vulnerability .NET and Visual Studio Denial of Service Vulnerability

nvd

CVE-2022-29117HIGHCVSS 7.5≥ 16.0, ≤ 16.0.112022-05-10

CVE-2022-29117 [HIGH] CVE-2022-29117: .NET and Visual Studio Denial of Service Vulnerability .NET and Visual Studio Denial of Service Vulnerability

nvd

CVE-2022-24513HIGHCVSS 7.8≥ 15.9, ≤ 16.9v8.102022-04-15

CVE-2022-24513 [HIGH] CVE-2022-24513: Visual Studio Elevation of Privilege Vulnerability Visual Studio Elevation of Privilege Vulnerability

nvd

CVE-2022-24767HIGHCVSS 7.8≥ 16.0, < 16.7.27≥ 16.8, < 16.9.19+1 more2022-04-12

CVE-2022-24767 [HIGH] CWE-427 CVE-2022-24767: GitHub: Git for Windows' uninstaller vulnerable to DLL hijacking when run under the SYSTEM user acco GitHub: Git for Windows' uninstaller vulnerable to DLL hijacking when run under the SYSTEM user account.

nvd

CVE-2022-24464HIGHCVSS 7.5≥ 16.0, ≤ 16.6.4≥ 16.7.0, < 16.7.26+4 more2022-03-09

CVE-2022-24464 [HIGH] CVE-2022-24464: .NET and Visual Studio Denial of Service Vulnerability .NET and Visual Studio Denial of Service Vulnerability

nvd

CVE-2022-24512MEDIUMCVSS 6.3≥ 16.0, ≤ 16.6.4≥ 16.7.0, < 16.7.26+4 more2022-03-09

CVE-2022-24512 [MEDIUM] CVE-2022-24512: .NET and Visual Studio Remote Code Execution Vulnerability .NET and Visual Studio Remote Code Execution Vulnerability

nvd

CVE-2022-21871HIGHCVSS 7.0≥ 16.0, < 16.7.25≥ 16.8, < 16.9.172022-01-11

CVE-2022-21871 [HIGH] CVE-2022-21871: Microsoft Diagnostics Hub Standard Collector Runtime Elevation of Privilege Vulnerability Microsoft Diagnostics Hub Standard Collector Runtime Elevation of Privilege Vulnerability

nvd

← Previous2 / 5Next →