Products
.NET / Visual Studio
346 CVEs since tracking began. Latest: 2026-06.
Total CVEs
346
Critical
28
Important
311
Exploited
1
Publicly Disclosed
13
All CVEs for this product 346
| CVE | Title | Severity | CVSS | Component | Month | Exploited | Disclosed |
|---|---|---|---|---|---|---|---|
| CVE-2026-45490 | .NET SDK Elevation of Privilege Vulnerability | Important | 7.8 |
.NET | 2026-06 | - | - |
| CVE-2026-45491 | .NET Tampering Vulnerability | Important | 5.5 |
.NET | 2026-06 | - | - |
| CVE-2026-47287 | Visual Studio Code Tampering Vulnerability | Important | 6.5 |
Visual Studio Code | 2026-06 | - | - |
| CVE-2026-47292 | Visual Studio Code MSSQL Extension Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio Code | 2026-06 | - | - |
| CVE-2026-40376 | Visual Studio Code Elevation of Privilege Vulnerability | Important | 8.1 |
Visual Studio Code | 2026-06 | - | - |
| CVE-2026-45482 | Microsoft Visual Studio Code CoPilot Chat Security Feature Bypass Vulnerability | Important | 8.4 |
GitHub Copilot and Visual Studio Code | 2026-06 | - | - |
| CVE-2026-45591 | ASP.NET Core Denial of Service Vulnerability | Important | 7.5 |
ASP.NET Core | 2026-06 | - | - |
| CVE-2026-47281 | Visual Studio Code Elevation of Privilege Vulnerability | Important | 9.6 |
Visual Studio Code | 2026-06 | - | - |
| CVE-2026-47284 | Visual Studio Code Information Disclosure Vulnerability | Important | 6.5 |
Visual Studio Code | 2026-06 | - | - |
| CVE-2026-48569 | Visual Studio Code Security Feature Bypass Vulnerability | Important | 5.5 |
Visual Studio Code | 2026-06 | - | - |
| CVE-2026-41109 | GitHub Copilot and Visual Studio Code Security Feature Bypass Vulnerability | Important | 8.8 |
GitHub Copilot and Visual Studio | 2026-05 | - | - |
| CVE-2026-41610 | Visual Studio Code Security Feature Bypass Vulnerability | Important | 5 |
Visual Studio Code | 2026-05 | - | - |
| CVE-2026-41611 | Visual Studio Code Remote Code Execution Vulnerability | Important | 3.3 |
Visual Studio Code | 2026-05 | - | - |
| CVE-2026-41612 | Visual Studio Code Information Disclosure Vulnerability | Important | 5.5 |
Visual Studio Code | 2026-05 | - | - |
| CVE-2026-32175 | .NET Core Tampering Vulnerability | Important | 4.3 |
.NET | 2026-05 | - | - |
| CVE-2026-42899 | ASP.NET Core Denial of Service Vulnerability | Important | 7.5 |
ASP.NET Core | 2026-05 | - | - |
| CVE-2026-41613 | Visual Studio Code Elevation of Privilege Vulnerability | Important | 8.8 |
Visual Studio Code | 2026-05 | - | - |
| CVE-2026-35433 | .NET Elevation of Privilege Vulnerability | Important | 7.3 |
.NET | 2026-05 | - | - |
| CVE-2026-32177 | .NET Elevation of Privilege Vulnerability | Important | 7.3 |
.NET | 2026-05 | - | - |
| CVE-2026-23653 | GitHub Copilot and Visual Studio Code Information Disclosure Vulnerability | Important | 6.5 |
GitHub Copilot and Visual Studio Code | 2026-04 | - | - |
| CVE-2026-32178 | .NET Spoofing Vulnerability | Important | 7.5 |
.NET | 2026-04 | - | - |
| CVE-2026-32226 | .NET Framework Denial of Service Vulnerability | Important | 5.9 |
.NET Framework | 2026-04 | - | - |
| CVE-2026-33116 | .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability | Important | 7.5 |
.NET, .NET Framework, Visual Studio | 2026-04 | - | - |
| CVE-2026-23666 | .NET Framework Denial of Service Vulnerability | Critical | 7.5 |
.NET Framework | 2026-04 | - | - |
| CVE-2026-26171 | .NET Denial of Service Vulnerability | Important | 7.5 |
.NET | 2026-04 | - | - |
| CVE-2026-32203 | .NET and Visual Studio Denial of Service Vulnerability | Important | 7.5 |
.NET and Visual Studio | 2026-04 | - | - |
| CVE-2026-40372 | ASP.NET Core Elevation of Privilege Vulnerability | Important | 9.1 |
ASP.NET Core | 2026-04 | - | - |
| CVE-2026-26131 | .NET Elevation of Privilege Vulnerability | Important | 7.8 |
.NET | 2026-03 | - | - |
| CVE-2026-26127 | .NET Denial of Service Vulnerability | Important | 7.5 |
.NET | 2026-03 | - | Yes |
| CVE-2026-26130 | ASP.NET Core Denial of Service Vulnerability | Important | 7.5 |
ASP.NET Core | 2026-03 | - | - |
| CVE-2026-21218 | .NET Spoofing Vulnerability | Important | 7.5 |
.NET | 2026-02 | - | - |
| CVE-2026-21257 | GitHub Copilot and Visual Studio Elevation of Privilege Vulnerability | Important | 8 |
GitHub Copilot and Visual Studio | 2026-02 | - | - |
| CVE-2026-21256 | GitHub Copilot and Visual Studio Remote Code Execution Vulnerability | Important | 8.8 |
GitHub Copilot and Visual Studio | 2026-02 | - | - |
| CVE-2026-21518 | GitHub Copilot and Visual Studio Code Security Feature Bypass Vulnerability | Important | 8.8 |
GitHub Copilot and Visual Studio Code | 2026-02 | - | - |
| CVE-2026-21523 | GitHub Copilot and Visual Studio Code Remote Code Execution Vulnerability | Important | 8 |
GitHub Copilot and Visual Studio | 2026-02 | - | - |
| CVE-2025-62214 | Visual Studio Remote Code Execution Vulnerability | Critical | 6.7 |
Visual Studio | 2025-11 | - | - |
| CVE-2025-62222 | Agentic AI and Visual Studio Code Remote Code Execution Vulnerability | Important | 8.8 |
Visual Studio Code CoPilot Chat Extension | 2025-11 | - | - |
| CVE-2025-62449 | Microsoft Visual Studio Code CoPilot Chat Extension Security Feature Bypass Vulnerability | Important | 6.8 |
Visual Studio Code CoPilot Chat Extension | 2025-11 | - | - |
| CVE-2025-62453 | GitHub Copilot and Visual Studio Code Security Feature Bypass Vulnerability | Important | 5 |
GitHub Copilot and Visual Studio Code | 2025-11 | - | - |
| CVE-2025-64660 | GitHub Copilot and Visual Studio Code Remote Code Execution Vulnerability | Important | 8 |
GitHub Copilot and Visual Studio Code | 2025-11 | - | - |
| CVE-2025-55247 | .NET Elevation of Privilege Vulnerability | Important | 7.3 |
.NET | 2025-10 | - | - |
| CVE-2025-55315 | ASP.NET Security Feature Bypass Vulnerability | Important | 9.9 |
ASP.NET Core | 2025-10 | - | - |
| CVE-2025-55240 | Visual Studio Elevation of Privilege Vulnerability | Important | 7.3 |
Visual Studio | 2025-10 | - | - |
| CVE-2025-55248 | .NET, .NET Framework, and Visual Studio Information Disclosure Vulnerability | Important | 5.7 |
.NET, .NET Framework, Visual Studio | 2025-10 | - | - |
| CVE-2025-53773 | GitHub Copilot and Visual Studio Remote Code Execution Vulnerability | Important | 7.8 |
GitHub Copilot and Visual Studio | 2025-08 | - | - |
| CVE-2025-49714 | Visual Studio Code Python Extension Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio Code - Python extension | 2025-07 | - | - |
| CVE-2025-49739 | Visual Studio Elevation of Privilege Vulnerability | Important | 8.8 |
Visual Studio | 2025-07 | - | - |
| CVE-2025-30399 | .NET and Visual Studio Remote Code Execution Vulnerability | Important | 7.5 |
.NET and Visual Studio | 2025-06 | - | - |
| CVE-2025-47959 | Visual Studio Remote Code Execution Vulnerability | Important | 7.1 |
Visual Studio | 2025-06 | - | - |
| CVE-2025-26646 | .NET, Visual Studio, and Build Tools for Visual Studio Spoofing Vulnerability | Important | 8 |
.NET, Visual Studio, and Build Tools for Visual Studio | 2025-05 | - | - |
| CVE-2025-32703 | Visual Studio Information Disclosure Vulnerability | Important | 5.5 |
Visual Studio | 2025-05 | - | - |
| CVE-2025-21264 | Visual Studio Code Security Feature Bypass Vulnerability | Important | 7.1 |
Visual Studio Code | 2025-05 | - | - |
| CVE-2025-32702 | Visual Studio Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio | 2025-05 | - | Yes |
| CVE-2025-29803 | Visual Studio Tools for Applications and SQL Server Management Studio Elevation of Privilege Vulnerability | Important | 7.3 |
Visual Studio Tools for Applications and SQL Server Management Studio | 2025-04 | - | - |
| CVE-2025-29802 | Visual Studio Elevation of Privilege Vulnerability | Important | 7.3 |
Visual Studio | 2025-04 | - | - |
| CVE-2025-29804 | Visual Studio Elevation of Privilege Vulnerability | Important | 7.3 |
Visual Studio | 2025-04 | - | - |
| CVE-2025-32726 | Visual Studio Code Elevation of Privilege Vulnerability | Important | 6.8 |
Visual Studio Code | 2025-04 | - | - |
| CVE-2025-26682 | ASP.NET Core and Visual Studio Denial of Service Vulnerability | Important | 7.5 |
ASP.NET Core | 2025-04 | - | - |
| CVE-2025-24070 | ASP.NET Core and Visual Studio Elevation of Privilege Vulnerability | Important | 7 |
ASP.NET Core & Visual Studio | 2025-03 | - | - |
| CVE-2025-24998 | Visual Studio Elevation of Privilege Vulnerability | Important | 7.3 |
Visual Studio | 2025-03 | - | - |
| CVE-2025-25003 | Visual Studio Elevation of Privilege Vulnerability | Important | 7.3 |
Visual Studio | 2025-03 | - | - |
| CVE-2025-26631 | Visual Studio Code Elevation of Privilege Vulnerability | Important | 7.3 |
Visual Studio Code | 2025-03 | - | - |
| CVE-2025-21206 | Visual Studio Installer Elevation of Privilege Vulnerability | Important | 7.3 |
Visual Studio | 2025-02 | - | - |
| CVE-2025-24039 | Visual Studio Code Elevation of Privilege Vulnerability | Important | 7.3 |
Visual Studio Code | 2025-02 | - | - |
| CVE-2025-24042 | Visual Studio Code JS Debug Extension Elevation of Privilege Vulnerability | Important | 7.3 |
Visual Studio Code | 2025-02 | - | - |
| CVE-2025-21176 | .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability | Important | 8.8 |
.NET, .NET Framework, Visual Studio | 2025-01 | - | - |
| CVE-2025-21178 | Visual Studio Remote Code Execution Vulnerability | Important | 8.8 |
Visual Studio | 2025-01 | - | - |
| CVE-2025-21173 | .NET Elevation of Privilege Vulnerability | Important | 7.3 |
.NET | 2025-01 | - | - |
| CVE-2025-21405 | Visual Studio Elevation of Privilege Vulnerability | Important | 7.3 |
Visual Studio | 2025-01 | - | - |
| CVE-2025-21172 | .NET and Visual Studio Remote Code Execution Vulnerability | Important | 7.5 |
.NET and Visual Studio | 2025-01 | - | - |
| CVE-2025-21171 | .NET Remote Code Execution Vulnerability | Important | 7.5 |
.NET | 2025-01 | - | - |
| CVE-2024-43499 | .NET and Visual Studio Denial of Service Vulnerability | Important | 7.5 |
.NET and Visual Studio | 2024-11 | - | - |
| CVE-2024-49044 | Visual Studio Elevation of Privilege Vulnerability | Important | 6.7 |
Visual Studio | 2024-11 | - | - |
| CVE-2024-49049 | Visual Studio Code Remote Extension Elevation of Privilege Vulnerability | Moderate | 7.1 |
Visual Studio Code | 2024-11 | - | - |
| CVE-2024-43498 | .NET and Visual Studio Remote Code Execution Vulnerability | Critical | 9.8 |
.NET and Visual Studio | 2024-11 | - | - |
| CVE-2024-49050 | Visual Studio Code Python Extension Remote Code Execution Vulnerability | Important | 8.8 |
Visual Studio Code | 2024-11 | - | - |
| CVE-2024-38229 | .NET and Visual Studio Remote Code Execution Vulnerability | Important | 8.1 |
.NET and Visual Studio | 2024-10 | - | - |
| CVE-2024-43601 | Visual Studio Code for Linux Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio Code | 2024-10 | - | - |
| CVE-2024-43483 | .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability | Important | 7.5 |
.NET, .NET Framework, Visual Studio | 2024-10 | - | - |
| CVE-2024-43484 | .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability | Important | 7.5 |
.NET, .NET Framework, Visual Studio | 2024-10 | - | - |
| CVE-2024-43485 | .NET and Visual Studio Denial of Service Vulnerability | Important | 7.5 |
.NET and Visual Studio | 2024-10 | - | - |
| CVE-2024-43590 | Visual C++ Redistributable Installer Elevation of Privilege Vulnerability | Important | 7.8 |
Visual C++ Redistributable Installer | 2024-10 | - | - |
| CVE-2024-43603 | Visual Studio Collector Service Denial of Service Vulnerability | Important | 5.5 |
Visual Studio | 2024-10 | - | - |
| CVE-2024-43488 | Visual Studio Code extension for Arduino Remote Code Execution Vulnerability | Critical | 9.8 |
Visual Studio Code | 2024-10 | - | - |
| CVE-2024-38167 | .NET and Visual Studio Information Disclosure Vulnerability | Important | 6.5 |
.NET and Visual Studio | 2024-08 | - | - |
| CVE-2024-38168 | .NET and Visual Studio Denial of Service Vulnerability | Important | 7.5 |
.NET and Visual Studio | 2024-08 | - | - |
| CVE-2024-35264 | .NET and Visual Studio Remote Code Execution Vulnerability | Important | 8.1 |
.NET and Visual Studio | 2024-07 | - | Yes |
| CVE-2024-30105 | .NET Core and Visual Studio Denial of Service Vulnerability | Important | 7.5 |
.NET and Visual Studio | 2024-07 | - | - |
| CVE-2024-35272 | SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability | Important | 8.8 |
SQL Server | 2024-07 | - | - |
| CVE-2024-38081 | .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability | Important | 7.3 |
.NET and Visual Studio | 2024-07 | - | - |
| CVE-2024-38095 | .NET and Visual Studio Denial of Service Vulnerability | Important | 7.5 |
.NET and Visual Studio | 2024-07 | - | - |
| CVE-2024-35255 | Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability | Important | 5.5 |
Azure SDK | 2024-06 | - | - |
| CVE-2024-29060 | Visual Studio Elevation of Privilege Vulnerability | Important | 6.7 |
Visual Studio | 2024-06 | - | - |
| CVE-2024-35252 | Azure Storage Movement Client Library Denial of Service Vulnerability | Important | 7.5 |
Azure Storage Library | 2024-06 | - | - |
| CVE-2024-30052 | Visual Studio Remote Code Execution Vulnerability | Important | 4.7 |
Visual Studio | 2024-06 | - | - |
| CVE-2024-30045 | .NET and Visual Studio Remote Code Execution Vulnerability | Important | 6.3 |
.NET and Visual Studio | 2024-05 | - | - |
| CVE-2024-30046 | Visual Studio Denial of Service Vulnerability | Important | 5.9 |
Visual Studio | 2024-05 | - | Yes |
| CVE-2024-21409 | .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability | Important | 7.3 |
.NET and Visual Studio | 2024-04 | - | - |
| CVE-2024-28929 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | Important | 8.8 |
SQL Server | 2024-04 | - | - |
| CVE-2024-28931 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | Important | 8.8 |
SQL Server | 2024-04 | - | - |
| CVE-2024-28932 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | Important | 8.8 |
SQL Server | 2024-04 | - | - |
| CVE-2024-28936 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | Important | 8.8 |
SQL Server | 2024-04 | - | - |
| CVE-2024-28930 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | Important | 8.8 |
SQL Server | 2024-04 | - | - |
| CVE-2024-28933 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | Important | 8.8 |
SQL Server | 2024-04 | - | - |
| CVE-2024-28934 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | Important | 8.8 |
SQL Server | 2024-04 | - | - |
| CVE-2024-28935 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | Important | 8.8 |
SQL Server | 2024-04 | - | - |
| CVE-2024-28937 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | Important | 8.8 |
SQL Server | 2024-04 | - | - |
| CVE-2024-28938 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | Important | 8.8 |
SQL Server | 2024-04 | - | - |
| CVE-2024-29992 | Azure Identity Library for .NET Information Disclosure Vulnerability | Moderate | 5.5 |
Azure SDK | 2024-04 | - | - |
| CVE-2024-21392 | .NET and Visual Studio Denial of Service Vulnerability | Important | 7.5 |
.NET | 2024-03 | - | - |
| CVE-2024-26190 | Microsoft QUIC Denial of Service Vulnerability | Important | 7.5 |
Microsoft QUIC | 2024-03 | - | - |
| CVE-2024-26165 | Visual Studio Code Elevation of Privilege Vulnerability | Important | 8.8 |
Visual Studio Code | 2024-03 | - | - |
| CVE-2024-29059 | .NET Framework Information Disclosure Vulnerability | Important | 7.5 |
.NET Framework | 2024-03 | - | - |
| CVE-2024-21386 | .NET Denial of Service Vulnerability | Important | 7.5 |
.NET | 2024-02 | - | - |
| CVE-2024-21404 | .NET Denial of Service Vulnerability | Important | 7.5 |
.NET | 2024-02 | - | - |
| CVE-2024-0056 | Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability | Important | 8.7 |
SQL Server | 2024-01 | - | - |
| CVE-2024-0057 | NET, .NET Framework, and Visual Studio Security Feature Bypass Vulnerability | Important | 9.8 |
.NET and Visual Studio | 2024-01 | - | - |
| CVE-2024-20656 | Visual Studio Elevation of Privilege Vulnerability | Important | 7.8 |
Visual Studio | 2024-01 | - | - |
| CVE-2024-21312 | .NET Framework Denial of Service Vulnerability | Important | 7.5 |
.NET Framework | 2024-01 | - | - |
| CVE-2024-20672 | .NET Denial of Service Vulnerability | Important | 7.5 |
.NET | 2024-01 | - | - |
| CVE-2024-21319 | Microsoft Identity Denial of service vulnerability | Important | 6.8 |
Microsoft Identity Services | 2024-01 | - | - |
| CVE-2023-36558 | ASP.NET Core Security Feature Bypass Vulnerability | Important | 5.5 |
ASP.NET | 2023-11 | - | - |
| CVE-2023-36560 | ASP.NET Security Feature Bypass Vulnerability | Important | 8.8 |
ASP.NET | 2023-11 | - | - |
| CVE-2023-36049 | .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability | Important | 9.8 |
.NET Framework | 2023-11 | - | - |
| CVE-2023-36042 | Visual Studio Denial of Service Vulnerability | Important | 5.5 |
Visual Studio | 2023-11 | - | - |
| CVE-2023-36038 | ASP.NET Core Denial of Service Vulnerability | Important | 7.5 |
ASP.NET | 2023-11 | - | Yes |
| CVE-2023-36018 | Visual Studio Code Jupyter Extension Spoofing Vulnerability | Important | 9.8 |
Visual Studio Code | 2023-11 | - | - |
| CVE-2023-38171 | Microsoft QUIC Denial of Service Vulnerability | Important | 7.5 |
Microsoft QUIC | 2023-10 | - | - |
| CVE-2023-36435 | Microsoft QUIC Denial of Service Vulnerability | Important | 7.5 |
Microsoft QUIC | 2023-10 | - | - |
| CVE-2023-36415 | Azure Identity SDK Remote Code Execution Vulnerability | Important | 8.8 |
Azure SDK | 2023-10 | - | - |
| CVE-2023-36414 | Azure Identity SDK Remote Code Execution Vulnerability | Important | 8.8 |
Azure SDK | 2023-10 | - | - |
| CVE-2023-36759 | Visual Studio Elevation of Privilege Vulnerability | Important | 6.7 |
Visual Studio | 2023-09 | - | - |
| CVE-2023-36758 | Visual Studio Elevation of Privilege Vulnerability | Important | 9.8 |
Visual Studio | 2023-09 | - | - |
| CVE-2023-36742 | Visual Studio Code Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio Code | 2023-09 | - | - |
| CVE-2023-36799 | .NET Core and Visual Studio Denial of Service Vulnerability | Important | 6.5 |
.NET Core & Visual Studio | 2023-09 | - | - |
| CVE-2023-36796 | Visual Studio Remote Code Execution Vulnerability | Critical | 7.8 |
.NET and Visual Studio | 2023-09 | - | - |
| CVE-2023-36794 | Visual Studio Remote Code Execution Vulnerability | Important | 7.8 |
.NET and Visual Studio | 2023-09 | - | - |
| CVE-2023-36793 | Visual Studio Remote Code Execution Vulnerability | Critical | 7.8 |
.NET and Visual Studio | 2023-09 | - | - |
| CVE-2023-36792 | Visual Studio Remote Code Execution Vulnerability | Critical | 7.8 |
.NET and Visual Studio | 2023-09 | - | - |
| CVE-2023-36788 | .NET Framework Remote Code Execution Vulnerability | Important | 7.8 |
.NET Framework | 2023-09 | - | - |
| CVE-2023-36873 | .NET Framework Spoofing Vulnerability | Important | 5.9 |
.NET Framework | 2023-08 | - | - |
| CVE-2023-36899 | ASP.NET Elevation of Privilege Vulnerability | Important | 8.8 |
ASP.NET | 2023-08 | - | - |
| CVE-2023-36897 | Visual Studio Tools for Office Runtime Spoofing Vulnerability | Important | 6.5 |
Microsoft Office | 2023-08 | - | - |
| CVE-2023-35390 | .NET and Visual Studio Remote Code Execution Vulnerability | Important | 7.8 |
.NET Core | 2023-08 | - | - |
| CVE-2023-35391 | ASP.NET Core SignalR and Visual Studio Information Disclosure Vulnerability | Important | 7.5 |
ASP.NET and Visual Studio | 2023-08 | - | - |
| CVE-2023-38180 | .NET and Visual Studio Denial of Service Vulnerability | Important | 7.5 |
ASP.NET | 2023-08 | Yes | - |
| CVE-2023-38178 | .NET Core and Visual Studio Denial of Service Vulnerability | Important | 7.5 |
.NET Core | 2023-08 | - | - |
| CVE-2023-33127 | .NET and Visual Studio Elevation of Privilege Vulnerability | Important | 8.1 |
.NET and Visual Studio | 2023-07 | - | - |
| CVE-2023-33170 | ASP.NET and Visual Studio Security Feature Bypass Vulnerability | Important | 8.1 |
ASP.NET and Visual Studio | 2023-07 | - | - |
| CVE-2023-36867 | Visual Studio Code GitHub Pull Requests and Issues Extension Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio Code | 2023-07 | - | - |
| CVE-2023-24897 | .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability | Critical | 7.8 |
.NET and Visual Studio | 2023-06 | - | - |
| CVE-2023-24895 | .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability | Important | 7.8 |
.NET and Visual Studio | 2023-06 | - | - |
| CVE-2023-24936 | .NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability | Moderate | 7.5 |
.NET and Visual Studio | 2023-06 | - | - |
| CVE-2023-29326 | .NET Framework Remote Code Execution Vulnerability | Important | 7.8 |
.NET Framework | 2023-06 | - | - |
| CVE-2023-33139 | Visual Studio Information Disclosure Vulnerability | Important | 5.5 |
Visual Studio | 2023-06 | - | - |
| CVE-2023-29356 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | Important | 7.8 |
SQL Server | 2023-06 | - | - |
| CVE-2023-32025 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | Important | 7.8 |
SQL Server | 2023-06 | - | - |
| CVE-2023-32026 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | Important | 7.8 |
SQL Server | 2023-06 | - | - |
| CVE-2023-32027 | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | Important | 7.8 |
SQL Server | 2023-06 | - | - |
| CVE-2023-29349 | Microsoft ODBC and OLE DB Remote Code Execution Vulnerability | Important | 7.8 |
SQL Server | 2023-06 | - | - |
| CVE-2023-32028 | Microsoft SQL OLE DB Remote Code Execution Vulnerability | Important | 7.8 |
SQL Server | 2023-06 | - | - |
| CVE-2023-29331 | .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability | Important | 7.5 |
.NET Core | 2023-06 | - | - |
| CVE-2023-32030 | .NET and Visual Studio Denial of Service Vulnerability | Important | 7.5 |
.NET and Visual Studio | 2023-06 | - | - |
| CVE-2023-32032 | .NET and Visual Studio Elevation of Privilege Vulnerability | Important | 6.5 |
.NET and Visual Studio | 2023-06 | - | - |
| CVE-2023-33126 | .NET and Visual Studio Remote Code Execution Vulnerability | Important | 7.3 |
.NET and Visual Studio | 2023-06 | - | - |
| CVE-2023-33128 | .NET and Visual Studio Remote Code Execution Vulnerability | Important | 7.3 |
.NET and Visual Studio | 2023-06 | - | - |
| CVE-2023-33135 | .NET and Visual Studio Elevation of Privilege Vulnerability | Important | 7.3 |
.NET and Visual Studio | 2023-06 | - | - |
| CVE-2023-33144 | Visual Studio Code Spoofing Vulnerability | Important | 6.6 |
Visual Studio Code | 2023-06 | - | - |
| CVE-2023-29338 | Visual Studio Code Spoofing Vulnerability | Important | 6.6 |
Visual Studio Code | 2023-05 | - | - |
| CVE-2023-24893 | Visual Studio Code Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio Code | 2023-04 | - | - |
| CVE-2023-28260 | .NET DLL Hijacking Remote Code Execution Vulnerability | Important | 7.8 |
.NET Core | 2023-04 | - | - |
| CVE-2023-28262 | Visual Studio Elevation of Privilege Vulnerability | Important | 7.8 |
Visual Studio | 2023-04 | - | - |
| CVE-2023-28263 | Visual Studio Information Disclosure Vulnerability | Important | 5.5 |
Visual Studio | 2023-04 | - | - |
| CVE-2023-28296 | Visual Studio Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio | 2023-04 | - | - |
| CVE-2023-28299 | Visual Studio Spoofing Vulnerability | Important | 5.5 |
Visual Studio | 2023-04 | - | - |
| CVE-2023-21566 | Visual Studio Elevation of Privilege Vulnerability | Important | 7.8 |
Visual Studio | 2023-02 | - | - |
| CVE-2023-21567 | Visual Studio Denial of Service Vulnerability | Important | 5.6 |
Visual Studio | 2023-02 | - | - |
| CVE-2023-21568 | Microsoft SQL Server Integration Service (VS extension) Remote Code Execution Vulnerability | Important | 7.3 |
SQL Server | 2023-02 | - | - |
| CVE-2023-21808 | .NET and Visual Studio Remote Code Execution Vulnerability | Critical | 7.8 |
.NET and Visual Studio | 2023-02 | - | - |
| CVE-2023-21815 | Visual Studio Remote Code Execution Vulnerability | Critical | 7.8 |
Visual Studio | 2023-02 | - | - |
| CVE-2023-21722 | .NET Framework Denial of Service Vulnerability | Important | 5 |
.NET Framework | 2023-02 | - | - |
| CVE-2023-23381 | Visual Studio Remote Code Execution Vulnerability | Critical | 7.8 |
Visual Studio | 2023-02 | - | - |
| CVE-2023-21538 | .NET Denial of Service Vulnerability | Important | 7.5 |
.NET Core | 2023-01 | - | - |
| CVE-2023-21779 | Visual Studio Code Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio Code | 2023-01 | - | - |
| CVE-2022-41089 | .NET Framework Remote Code Execution Vulnerability | Important | 7.8 |
.NET Framework | 2022-12 | - | - |
| CVE-2022-41064 | .NET Framework Information Disclosure Vulnerability | Important | 5.8 |
.NET Framework | 2022-11 | - | - |
| CVE-2022-41119 | Visual Studio Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio | 2022-11 | - | - |
| CVE-2022-41032 | NuGet Client Elevation of Privilege Vulnerability | Important | 7.8 |
NuGet Client | 2022-10 | - | - |
| CVE-2022-41034 | Visual Studio Code Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio Code | 2022-10 | - | - |
| CVE-2022-41083 | Visual Studio Code Elevation of Privilege Vulnerability | Important | 7.8 |
Visual Studio Code | 2022-10 | - | - |
| CVE-2022-41042 | Visual Studio Code Information Disclosure Vulnerability | Important | 7.4 |
Visual Studio Code | 2022-10 | - | - |
| CVE-2022-26929 | .NET Framework Remote Code Execution Vulnerability | Important | 7.8 |
.NET Framework | 2022-09 | - | - |
| CVE-2022-38013 | .NET Core and Visual Studio Denial of Service Vulnerability | Important | 7.5 |
.NET and Visual Studio | 2022-09 | - | - |
| CVE-2022-38020 | Visual Studio Code Elevation of Privilege Vulnerability | Important | 7.3 |
Visual Studio Code | 2022-09 | - | - |
| CVE-2022-34716 | .NET Spoofing Vulnerability | Important | 5.9 |
.NET Core | 2022-08 | - | - |
| CVE-2022-35777 | Visual Studio Remote Code Execution Vulnerability | Important | 8.8 |
Visual Studio | 2022-08 | - | - |
| CVE-2022-35825 | Visual Studio Remote Code Execution Vulnerability | Important | 8.8 |
Visual Studio | 2022-08 | - | - |
| CVE-2022-35826 | Visual Studio Remote Code Execution Vulnerability | Important | 8.8 |
Visual Studio | 2022-08 | - | - |
| CVE-2022-35827 | Visual Studio Remote Code Execution Vulnerability | Important | 8.8 |
Visual Studio | 2022-08 | - | - |
| CVE-2022-30187 | Azure Storage Library Information Disclosure Vulnerability | Important | 4.7 |
Azure Storage Library | 2022-07 | - | - |
| CVE-2022-30184 | .NET and Visual Studio Information Disclosure Vulnerability | Important | 5.5 |
.NET and Visual Studio | 2022-06 | - | - |
| CVE-2022-23267 | .NET and Visual Studio Denial of Service Vulnerability | Important | 7.5 |
.NET and Visual Studio | 2022-05 | - | - |
| CVE-2022-29117 | .NET and Visual Studio Denial of Service Vulnerability | Important | 7.5 |
.NET and Visual Studio | 2022-05 | - | - |
| CVE-2022-29145 | .NET and Visual Studio Denial of Service Vulnerability | Important | 7.5 |
.NET and Visual Studio | 2022-05 | - | - |
| CVE-2022-29148 | Visual Studio Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio | 2022-05 | - | - |
| CVE-2022-30130 | .NET Framework Denial of Service Vulnerability | Low | 3.3 |
.NET Framework | 2022-05 | - | - |
| CVE-2022-30129 | Visual Studio Code Remote Code Execution Vulnerability | Important | 8.8 |
Visual Studio Code | 2022-05 | - | - |
| CVE-2022-24513 | Visual Studio Elevation of Privilege Vulnerability | Important | 7.8 |
Visual Studio | 2022-04 | - | - |
| CVE-2022-26832 | .NET Framework Denial of Service Vulnerability | Important | 7.5 |
.NET Framework | 2022-04 | - | - |
| CVE-2022-26907 | Azure SDK for .NET Information Disclosure Vulnerability | Important | 5.3 |
Azure SDK | 2022-04 | - | - |
| CVE-2022-26921 | Visual Studio Code Elevation of Privilege Vulnerability | Important | 7.3 |
Visual Studio Code | 2022-04 | - | - |
| CVE-2022-24512 | .NET and Visual Studio Remote Code Execution Vulnerability | Important | 6.3 |
.NET and Visual Studio | 2022-03 | - | Yes |
| CVE-2022-24464 | .NET and Visual Studio Denial of Service Vulnerability | Important | 7.5 |
.NET and Visual Studio | 2022-03 | - | - |
| CVE-2022-24526 | Visual Studio Code Spoofing Vulnerability | Important | 6.1 |
Visual Studio Code | 2022-03 | - | - |
| CVE-2022-21986 | .NET Denial of Service Vulnerability | Important | 7.5 |
Kestrel Web Server | 2022-02 | - | - |
| CVE-2022-21991 | Visual Studio Code Remote Development Extension Remote Code Execution Vulnerability | Important | 8.1 |
Visual Studio Code | 2022-02 | - | - |
| CVE-2022-21871 | Microsoft Diagnostics Hub Standard Collector Runtime Elevation of Privilege Vulnerability | Important | 7.8 |
Windows Diagnostic Hub | 2022-01 | - | - |
| CVE-2022-21911 | .NET Framework Denial of Service Vulnerability | Important | 7.5 |
.NET Framework | 2022-01 | - | - |
| CVE-2021-43225 | Bot Framework SDK Remote Code Execution Vulnerability | Important | 9.8 |
Azure Bot Framework SDK | 2021-12 | - | - |
| CVE-2021-43877 | ASP.NET Core and Visual Studio Elevation of Privilege Vulnerability | Important | 8.8 |
ASP.NET Core & Visual Studio | 2021-12 | - | - |
| CVE-2021-43891 | Visual Studio Code Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio Code | 2021-12 | - | - |
| CVE-2021-43907 | Visual Studio Code WSL Extension Remote Code Execution Vulnerability | Critical | 9.8 |
Visual Studio Code - WSL Extension | 2021-12 | - | - |
| CVE-2021-43908 | Visual Studio Code Spoofing Vulnerability | Important | 4.3 |
Visual Studio Code | 2021-12 | - | - |
| CVE-2021-42319 | Visual Studio Elevation of Privilege Vulnerability | Important | 4.7 |
Visual Studio | 2021-11 | - | - |
| CVE-2021-42322 | Visual Studio Code Elevation of Privilege Vulnerability | Important | 7.8 |
Visual Studio Code | 2021-11 | - | - |
| CVE-2021-42277 | Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability | Important | 5.5 |
Windows Diagnostic Hub | 2021-11 | - | - |
| CVE-2021-41355 | .NET Core and Visual Studio Information Disclosure Vulnerability | Important | 5.7 |
.NET Core & Visual Studio | 2021-10 | - | - |
| CVE-2021-36952 | Visual Studio Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio | 2021-09 | - | - |
| CVE-2021-26437 | Visual Studio Code Spoofing Vulnerability | Important | 5.5 |
Visual Studio | 2021-09 | - | - |
| CVE-2021-26434 | Visual Studio Elevation of Privilege Vulnerability | Important | 7.8 |
Visual Studio | 2021-09 | - | - |
| CVE-2021-26423 | .NET Core and Visual Studio Denial of Service Vulnerability | Important | 7.5 |
.NET Core & Visual Studio | 2021-08 | - | - |
| CVE-2021-34532 | ASP.NET Core and Visual Studio Information Disclosure Vulnerability | Important | 5.5 |
ASP.NET Core & Visual Studio | 2021-08 | - | - |
| CVE-2021-34485 | .NET Core and Visual Studio Information Disclosure Vulnerability | Important | 5 |
.NET Core & Visual Studio | 2021-08 | - | - |
| CVE-2021-31938 | Microsoft VsCode Kubernetes Tools Extension Elevation of Privilege Vulnerability | Important | 7.3 |
Visual Studio Code - Kubernetes Tools | 2021-07 | - | - |
| CVE-2021-31957 | ASP.NET Core Denial of Service Vulnerability | Important | 5.9 |
.NET Core & Visual Studio | 2021-07 | - | - |
| CVE-2021-27068 | Visual Studio Remote Code Execution Vulnerability | Important | 8.8 |
Visual Studio | 2021-05 | - | - |
| CVE-2021-31204 | .NET and Visual Studio Elevation of Privilege Vulnerability | Important | 7.3 |
.NET Core & Visual Studio | 2021-05 | - | Yes |
| CVE-2021-31211 | Visual Studio Code Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio Code | 2021-05 | - | - |
| CVE-2021-31213 | Visual Studio Code Remote Containers Extension Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio Code | 2021-05 | - | - |
| CVE-2021-31214 | Visual Studio Code Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio Code | 2021-05 | - | - |
| CVE-2021-28313 | Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability | Important | 7.8 |
Windows Diagnostic Hub | 2021-04 | - | - |
| CVE-2021-28321 | Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability | Important | 7.8 |
Windows Diagnostic Hub | 2021-04 | - | - |
| CVE-2021-28322 | Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability | Important | 7.8 |
Windows Diagnostic Hub | 2021-04 | - | - |
| CVE-2021-28448 | Visual Studio Code Kubernetes Tools Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio Code - Kubernetes Tools | 2021-04 | - | - |
| CVE-2021-28457 | Visual Studio Code Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio Code | 2021-04 | - | - |
| CVE-2021-28469 | Visual Studio Code Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio Code | 2021-04 | - | - |
| CVE-2021-28470 | Visual Studio Code GitHub Pull Requests and Issues Extension Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio Code - GitHub Pull Requests and Issues Extension | 2021-04 | - | - |
| CVE-2021-28471 | Remote Development Extension for Visual Studio Code Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio Code | 2021-04 | - | - |
| CVE-2021-28472 | Visual Studio Code Maven for Java Extension Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio Code - Maven for Java Extension | 2021-04 | - | - |
| CVE-2021-28475 | Visual Studio Code Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio Code | 2021-04 | - | - |
| CVE-2021-28477 | Visual Studio Code Remote Code Execution Vulnerability | Important | 7 |
Visual Studio Code | 2021-04 | - | - |
| CVE-2021-27064 | Visual Studio Installer Elevation of Privilege Vulnerability | Important | 7.8 |
Visual Studio | 2021-04 | - | - |
| CVE-2021-28473 | Visual Studio Code Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio Code | 2021-04 | - | - |
| CVE-2021-1639 | Visual Studio Code Remote Code Execution Vulnerability | Important | 7 |
Visual Studio | 2021-03 | - | - |
| CVE-2021-1721 | .NET Core and Visual Studio Denial of Service Vulnerability | Important | 6.5 |
Developer Tools | 2021-03 | - | Yes |
| CVE-2021-24112 | .NET Core Remote Code Execution Vulnerability | Critical | 8.1 |
.NET Core | 2021-03 | - | - |
| CVE-2021-26700 | Visual Studio Code npm-script Extension Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio Code | 2021-03 | - | - |
| CVE-2021-26701 | .NET Core Remote Code Execution Vulnerability | Critical | 8.1 |
.NET Core | 2021-03 | - | Yes |
| CVE-2021-24111 | .NET Framework Denial of Service Vulnerability | Important | 7.5 |
.NET Framework | 2021-03 | - | - |
| CVE-2021-1651 | Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability | Important | 7.8 |
Windows Diagnostic Hub | 2021-01 | - | - |
| CVE-2021-1680 | Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability | Important | 7.8 |
Windows Diagnostic Hub | 2021-01 | - | - |
| CVE-2021-1723 | ASP.NET Core and Visual Studio Denial of Service Vulnerability | Important | 7.5 |
ASP.NET core & .NET core | 2021-01 | - | - |
| CVE-2021-1725 | Bot Framework SDK Information Disclosure Vulnerability | Important | 5.5 |
.NET Repository | 2021-01 | - | - |
| CVE-2020-17148 | Visual Studio Code Remote Development Extension Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio | 2020-12 | - | - |
| CVE-2020-17150 | Unknown | Important | 7.8 |
Visual Studio | 2020-12 | - | - |
| CVE-2020-17156 | Visual Studio Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio | 2020-12 | - | - |
| CVE-2020-17159 | Visual Studio Code Java Extension Pack Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio | 2020-12 | - | - |
| CVE-2020-17100 | Visual Studio Tampering Vulnerability | Important | 5.5 |
Visual Studio | 2020-11 | - | - |
| CVE-2020-17104 | Visual Studio Code JSHint Extension Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio | 2020-11 | - | - |
| CVE-2020-16977 | Visual Studio Code Python Extension Remote Code Execution Vulnerability | Important | 7 |
Python extension for Visual Studio Code | 2020-10 | - | - |
| CVE-2020-17023 | Visual Studio JSON Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio | 2020-10 | - | - |
| CVE-2020-16937 | .NET Framework Information Disclosure Vulnerability | Important | 4.7 |
.NET Framework | 2020-10 | - | Yes |
| CVE-2020-16856 | Visual Studio Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio | 2020-09 | - | - |
| CVE-2020-16881 | Visual Studio JSON Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio | 2020-09 | - | - |
| CVE-2020-1045 | Microsoft ASP.NET Core Security Feature Bypass Vulnerability | Important | 7.5 |
ASP.NET | 2020-09 | - | - |
| CVE-2020-1130 | Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability | Important | 6.6 |
Windows Diagnostic Hub | 2020-09 | - | - |
| CVE-2020-1133 | Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability | Important | 5.5 |
Windows Diagnostic Hub | 2020-09 | - | - |
| CVE-2020-16874 | Visual Studio Remote Code Execution Vulnerability | Critical | 7.8 |
Visual Studio | 2020-09 | - | - |
| CVE-2020-1476 | ASP.NET and .NET Elevation of Privilege Vulnerability | Important | 5.5 |
.NET Framework | 2020-08 | - | - |
| CVE-2020-1597 | ASP.NET Core Denial of Service Vulnerability | Important | 7.5 |
ASP.NET | 2020-08 | - | Yes |
| CVE-2020-0604 | Visual Studio Code Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio | 2020-08 | - | - |
| CVE-2020-1046 | .NET Framework Remote Code Execution Vulnerability | Critical | 7.8 |
.NET Framework | 2020-08 | - | - |
| CVE-2020-1393 | Windows Diagnostics Hub Elevation of Privilege Vulnerability | Important | 7.8 |
Microsoft Windows | 2020-07 | - | - |
| CVE-2020-1416 | Visual Studio and Visual Studio Code Elevation of Privilege Vulnerability | Important | 8.8 |
Visual Studio | 2020-07 | - | - |
| CVE-2020-1481 | Visual Studio Code ESLint Extension Remote Code Execution Vulnerability | Important | 8.8 |
Visual Studio | 2020-07 | - | - |
| CVE-2020-1147 | .NET Framework, SharePoint Server, and Visual Studio Remote Code Execution Vulnerability | Critical | 7.8 |
.NET Framework | 2020-07 | - | - |
| CVE-2020-1202 | Diagnostic Hub Standard Collector Elevation of Privilege Vulnerability | Important | 7.8 |
Diagnostics Hub | 2020-06 | - | - |
| CVE-2020-1203 | Diagnostic Hub Standard Collector Elevation of Privilege Vulnerability | Important | 7.8 |
Diagnostics Hub | 2020-06 | - | - |
| CVE-2020-1343 | Visual Studio Code Live Share Information Disclosure Vulnerability | Important | 5.9 |
Visual Studio | 2020-06 | - | - |
| CVE-2020-1278 | Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability | Important | 7.8 |
Diagnostics Hub | 2020-06 | - | - |
| CVE-2020-1257 | Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability | Important | 7.8 |
Windows Diagnostic Hub | 2020-06 | - | - |
| CVE-2020-1293 | Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability | Important | 7.8 |
Windows Diagnostic Hub | 2020-06 | - | - |
| CVE-2020-1192 | Visual Studio Code Python Extension Remote Code Execution Vulnerability | Critical | 7.8 |
Visual Studio | 2020-05 | - | - |
| CVE-2020-1066 | .NET Framework Elevation of Privilege Vulnerability | Important | 7.8 |
.NET Framework | 2020-05 | - | - |
| CVE-2020-1108 | .NET Core & .NET Framework Denial of Service Vulnerability | Important | 7.5 |
.NET Core | 2020-05 | - | - |
| CVE-2020-1161 | ASP.NET Core Denial of Service Vulnerability | Important | 7.5 |
.NET Core | 2020-05 | - | - |
| CVE-2020-1171 | Visual Studio Code Python Extension Remote Code Execution Vulnerability | Important | 8.8 |
Python extension for Visual Studio Code | 2020-05 | - | - |
| CVE-2020-0899 | Microsoft Visual Studio Elevation of Privilege Vulnerability | Important | 5.5 |
Visual Studio | 2020-04 | - | - |
| CVE-2020-0900 | Visual Studio Extension Installer Service Elevation of Privilege Vulnerability | Important | 5.5 |
Visual Studio | 2020-04 | - | - |
| CVE-2020-0789 | Visual Studio Extension Installer Service Denial of Service Vulnerability | Important | 7.1 |
Visual Studio | 2020-03 | - | - |
| CVE-2020-0810 | Diagnostic Hub Standard Collector Elevation of Privilege Vulnerability | Important | 7.8 |
Microsoft Windows | 2020-03 | - | - |
| CVE-2020-0884 | Microsoft Visual Studio Spoofing Vulnerability | Important | 3.7 |
Visual Studio | 2020-03 | - | - |
| CVE-2020-0793 | Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability | Important | 7.8 |
Microsoft Windows | 2020-03 | - | - |
| CVE-2020-0602 | ASP.NET Core Denial of Service Vulnerability | Important | 7.5 |
ASP.NET | 2020-01 | - | - |
| CVE-2020-0603 | ASP.NET Core Remote Code Execution Vulnerability | Critical | 8.8 |
ASP.NET | 2020-01 | - | - |
| CVE-2020-0605 | .NET Framework Remote Code Execution Vulnerability | Critical | 8.8 |
.NET Framework | 2020-01 | - | - |
| CVE-2020-0606 | .NET Framework Remote Code Execution Vulnerability | Critical | 8.8 |
.NET Framework | 2020-01 | - | - |
| CVE-2020-0646 | .NET Framework Remote Code Execution Injection Vulnerability | Critical | 9.8 |
.NET Framework | 2020-01 | - | - |
| CVE-2019-1349 | Git for Visual Studio Remote Code Execution Vulnerability | Critical | 8.8 |
Visual Studio | 2019-12 | - | - |
| CVE-2019-1350 | Git for Visual Studio Remote Code Execution Vulnerability | Critical | 8.8 |
Visual Studio | 2019-12 | - | - |
| CVE-2019-1351 | Git for Visual Studio Tampering Vulnerability | Moderate | 7.5 |
Visual Studio | 2019-12 | - | - |
| CVE-2019-1352 | Git for Visual Studio Remote Code Execution Vulnerability | Critical | 8.8 |
Visual Studio | 2019-12 | - | - |
| CVE-2019-1354 | Git for Visual Studio Remote Code Execution Vulnerability | Critical | 8.8 |
Visual Studio | 2019-12 | - | - |
| CVE-2019-1387 | Git for Visual Studio Remote Code Execution Vulnerability | Critical | 8.8 |
Visual Studio | 2019-12 | - | - |
| CVE-2019-1486 | Visual Studio Live Share Spoofing Vulnerability | Important | 6.1 |
Visual Studio | 2019-12 | - | - |
| CVE-2019-1425 | Visual Studio Elevation of Privilege Vulnerability | Important | 6.5 |
Visual Studio | 2019-11 | - | - |
| CVE-2019-1414 | Visual Studio Code Elevation of Privilege Vulnerability | Important | 7.8 |
Visual Studio | 2019-10 | - | - |
| CVE-2019-1232 | Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability | Important | 7.8 |
Visual Studio | 2019-09 | - | - |
| CVE-2019-1142 | .NET Framework Elevation of Privilege Vulnerability | Important | 5.5 |
.NET Framework | 2019-09 | - | - |
| CVE-2019-1301 | .NET Core Denial of Service Vulnerability | Important | 7.5 |
.NET Core | 2019-09 | - | - |
| CVE-2019-1302 | ASP.NET Core Elevation Of Privilege Vulnerability | Important | 8.8 |
ASP.NET | 2019-09 | - | - |
| CVE-2019-1211 | Git for Visual Studio Elevation of Privilege Vulnerability | Important | 7.3 |
Visual Studio | 2019-08 | - | - |
| CVE-2019-1258 | Azure Active Directory Authentication Library Elevation of Privilege Vulnerability | Important | 8.8 |
Microsoft Identity Services | 2019-08 | - | - |
| CVE-2019-1113 | .NET Framework Remote Code Execution Vulnerability | Critical | 8.8 |
.NET Framework | 2019-07 | - | - |
| CVE-2019-1006 | WCF/WIF SAML Token Authentication Bypass Vulnerability | Important | 7.5 |
.NET Framework | 2019-07 | - | - |
| CVE-2019-1075 | ASP.NET Core Spoofing Vulnerability | Moderate | 6.1 |
ASP.NET | 2019-07 | - | - |
| CVE-2019-1077 | Visual Studio Elevation of Privilege Vulnerability | Important | 5 |
Visual Studio | 2019-07 | - | - |
| CVE-2019-1079 | Visual Studio Information Disclosure Vulnerability | Important | 6.5 |
Visual Studio | 2019-07 | - | - |
| CVE-2019-1083 | .NET Denial of Service Vulnerability | Important | 7.5 |
.NET Framework | 2019-07 | - | - |
| CVE-2019-0980 | .Net Framework and .Net Core Denial of Service Vulnerability | Important | 7.5 |
.NET Core | 2019-05 | - | - |
| CVE-2019-0981 | .Net Framework and .Net Core Denial of Service Vulnerability | Important | 7.5 |
.NET Core | 2019-05 | - | - |
| CVE-2019-0982 | ASP.NET Core Denial of Service Vulnerability | Important | 7.5 |
.NET Core | 2019-05 | - | - |
| CVE-2019-0727 | Diagnostic Hub Standard Collector, Visual Studio Standard Collector Elevation of Privilege Vulnerability | Important | 7.8 |
Windows Diagnostic Hub | 2019-05 | - | - |
| CVE-2019-0820 | .NET Framework and .NET Core Denial of Service Vulnerability | Important | 7.5 |
.NET Framework | 2019-05 | - | - |
| CVE-2019-0864 | .NET Framework Denial of Service Vulnerability | Important | 5.5 |
.NET Framework | 2019-05 | - | - |
| CVE-2019-0815 | ASP.NET Core Denial of Service Vulnerability | Important | 7.5 |
.NET Core | 2019-04 | - | - |
| CVE-2019-0757 | NuGet Package Manager Tampering Vulnerability | Important | 6.5 |
NuGet | 2019-03 | - | Yes |
| CVE-2019-0809 | Visual Studio Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio | 2019-03 | - | Yes |
| CVE-2019-0657 | .NET Framework and Visual Studio Spoofing Vulnerability | Important | 5.9 |
.NET Framework | 2019-02 | - | - |
| CVE-2019-0613 | .NET Framework and Visual Studio Remote Code Execution Vulnerability | Important | 8.8 |
.NET Framework | 2019-02 | - | - |
| CVE-2019-0728 | Visual Studio Code Remote Code Execution Vulnerability | Important | 7.8 |
Visual Studio | 2019-02 | - | - |
| CVE-2019-0545 | .NET Framework Information Disclosure Vulnerability | Important | 7.5 |
.NET Framework | 2019-01 | - | - |
| CVE-2019-0537 | Microsoft Visual Studio Information Disclosure Vulnerability | Important | 5.5 |
Visual Studio | 2019-01 | - | - |
| CVE-2019-0546 | Visual Studio Remote Code Execution Vulnerability | Moderate | 7.8 |
Visual Studio | 2019-01 | - | - |
| CVE-2019-0548 | ASP.NET Core Denial of Service Vulnerability | Important | 7.5 |
ASP.NET | 2019-01 | - | - |
| CVE-2019-0564 | ASP.NET Core Denial of Service Vulnerability | Important | 7.5 |
ASP.NET | 2019-01 | - | - |
Threat Categories 7
| Threat Category | CVEs | Critical |
|---|---|---|
| Remote Code Execution | 127 | 27 |
| Elevation of Privilege | 88 | - |
| Denial of Service | 68 | 1 |
| Information Disclosure | 25 | - |
| Spoofing | 17 | - |
| Security Feature Bypass | 15 | - |
| Tampering | 6 | - |
Components 40
| Component | CVEs | Exploited |
|---|---|---|
| Visual Studio | 81 | - |
| Visual Studio Code | 48 | - |
| .NET and Visual Studio | 37 | - |
| .NET Framework | 33 | - |
| SQL Server | 19 | - |
| .NET | 17 | - |
| .NET Core | 15 | - |
| ASP.NET | 13 | 1 |
| Windows Diagnostic Hub | 12 | - |
| .NET Core & Visual Studio | 6 | - |
| ASP.NET Core | 6 | - |
| .NET, .NET Framework, Visual Studio | 5 | - |
| Azure SDK | 5 | - |
| GitHub Copilot and Visual Studio | 5 | - |
| GitHub Copilot and Visual Studio Code | 5 | - |
| ASP.NET Core & Visual Studio | 3 | - |
| Diagnostics Hub | 3 | - |
| Microsoft QUIC | 3 | - |
| Microsoft Windows | 3 | - |
| ASP.NET and Visual Studio | 2 | - |
| Azure Storage Library | 2 | - |
| Microsoft Identity Services | 2 | - |
| Python extension for Visual Studio Code | 2 | - |
| Visual Studio Code - Kubernetes Tools | 2 | - |
| Visual Studio Code CoPilot Chat Extension | 2 | - |
| .NET Repository | 1 | - |
| .NET, Visual Studio, and Build Tools for Visual Studio | 1 | - |
| ASP.NET core & .NET core | 1 | - |
| Azure Bot Framework SDK | 1 | - |
| Developer Tools | 1 | - |
| Kestrel Web Server | 1 | - |
| Microsoft Office | 1 | - |
| NuGet | 1 | - |
| NuGet Client | 1 | - |
| Visual C++ Redistributable Installer | 1 | - |
| Visual Studio Code - GitHub Pull Requests and Issues Extension | 1 | - |
| Visual Studio Code - Maven for Java Extension | 1 | - |
| Visual Studio Code - Python extension | 1 | - |
| Visual Studio Code - WSL Extension | 1 | - |
| Visual Studio Tools for Applications and SQL Server Management Studio | 1 | - |