Msrc Microsoft Visual Studio 2015 Update 3 vulnerabilities
46 known vulnerabilities affecting msrc/microsoft_visual_studio_2015_update_3.
Total CVEs
46
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH39MEDIUM7
Vulnerabilities
Page 3 of 3
CVE-2019-1079HIGHCVSS 6.52019-07-09
CVE-2019-1079 [MEDIUM] Visual Studio Information Disclosure Vulnerability
Visual Studio Information Disclosure Vulnerability
Description: An information disclosure vulnerability exists when Visual Studio improperly parses XML input in certain settings files. An attacker who successfully exploited this vulnerability could read arbitrary files via an XML external entity (XXE) declaration.
To exploit the vulnerability, an attacker could create specially crafted XML data and convince an authenticat
msrc
CVE-2019-0727MEDIUMCVSS 6.72019-05-14
CVE-2019-0727 [HIGH] Diagnostic Hub Standard Collector, Visual Studio Standard Collector Elevation of Privilege Vulnerability
Diagnostic Hub Standard Collector, Visual Studio Standard Collector Elevation of Privilege Vulnerability
Description: An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector or the Visual Studio Standard Collector allows file deletion in arbitrary locations.
To exploit the vulnerability, an attacker would first have to log on to the sys
msrc
CVE-2018-8599HIGHCVSS 7.02018-12-11
CVE-2018-8599 [HIGH] Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability
Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability
Description: An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector Service improperly impersonates certain file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.
An attacker with unprivileged access to a vulnerable system could e
msrc
CVE-2018-0952MEDIUMCVSS 6.7PoC2018-08-14
CVE-2018-0952 [HIGH] Diagnostic Hub Standard Collector Elevation of Privilege Vulnerability
Diagnostic Hub Standard Collector Elevation of Privilege Vulnerability
Description: An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector or the Visual Studio Standard Collector allows file creation in arbitrary locations.
To exploit the vulnerability, an attacker would first have to log on to the system.
An attacker could then run a specially crafted application that
msrc
CVE-2018-8172HIGHCVSS 7.82018-07-10
CVE-2018-8172 [HIGH] Visual Studio Remote Code Execution Vulnerability
Visual Studio Remote Code Execution Vulnerability
Description: A remote code execution vulnerability exists in Visual Studio software when the software does not check the source code of a file for an unbuilt project. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take cont
msrc
CVE-2018-1037HIGHCVSS 4.32018-04-10
CVE-2018-1037 [MEDIUM] Microsoft Visual Studio Information Disclosure Vulnerability
Microsoft Visual Studio Information Disclosure Vulnerability
Description: An information disclosure vulnerability exists when Visual Studio improperly discloses limited contents of uninitialized memory while compiling program database (PDB) files. An attacker who took advantage of this information disclosure could view uninitialized memory from the Visual Studio instance used to compile the PDB file.
To take adv
msrc
← Previous3 / 3