Search

Find a vulnerability

Search criteria

    94 vulnerabilities found for Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) by Microsoft

    CVE-2021-36952 (GCVE-0-2021-36952)

    Vulnerability from nvd – Published: 2021-09-15 11:23 – Updated: 2024-08-04 01:09
    VLAI
    Title
    Visual Studio Remote Code Execution Vulnerability
    Summary
    Visual Studio Remote Code Execution Vulnerability
    CWE
    • Remote Code Execution
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < 15.9.39 (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < 16.4.26 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.19 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-09-14 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T01:09:07.413Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36952"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1076/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "15.9.39",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.4.26",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.19",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-09-14T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Visual Studio Remote Code Execution Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Remote Code Execution",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T19:37:00.478Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36952"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1076/"
            }
          ],
          "title": "Visual Studio Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-36952",
        "datePublished": "2021-09-15T11:23:30.000Z",
        "dateReserved": "2021-07-19T00:00:00.000Z",
        "dateUpdated": "2024-08-04T01:09:07.413Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-26434 (GCVE-0-2021-26434)

    Vulnerability from nvd – Published: 2021-09-15 11:23 – Updated: 2024-08-03 20:26
    VLAI
    Title
    Visual Studio Elevation of Privilege Vulnerability
    Summary
    Visual Studio Elevation of Privilege Vulnerability
    CWE
    • Elevation of Privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < 15.9.39 (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < 16.4.26 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.19 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.11 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10) Affected: 16.11.0 , < 16.11.3 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-09-14 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T20:26:25.193Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26434"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1077/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "15.9.39",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.4.26",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.19",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.11",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.11.3",
                  "status": "affected",
                  "version": "16.11.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-09-14T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Visual Studio Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T19:37:25.359Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26434"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1077/"
            }
          ],
          "title": "Visual Studio Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-26434",
        "datePublished": "2021-09-15T11:23:00.000Z",
        "dateReserved": "2021-01-29T00:00:00.000Z",
        "dateUpdated": "2024-08-03T20:26:25.193Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-34532 (GCVE-0-2021-34532)

    Vulnerability from nvd – Published: 2021-08-12 18:12 – Updated: 2024-08-04 00:12
    VLAI
    Title
    ASP.NET Core and Visual Studio Information Disclosure Vulnerability
    Summary
    ASP.NET Core and Visual Studio Information Disclosure Vulnerability
    CWE
    • Information Disclosure
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft ASP.NET Core 2.1 Affected: 2.0 , < 2.1.29 (custom)
        cpe:2.3:a:microsoft:asp.net_core:2.1*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft ASP.NET Core 3.1 Affected: 3.0 , < 3.1.18 (custom)
        cpe:2.3:a:microsoft:asp.net_core:3.1:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft ASP.NET Core 5.0 Affected: 5.0 , < 5.0.9 (custom)
        cpe:2.3:a:microsoft:asp.net_core:5.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < 16.4.25 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.18 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.10 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9) Affected: 16.10.0 , < 16.10.5 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Visual Studio 2019 for Mac version 8.10 Affected: 8.1.0 , < 8.10.7 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*
    Create a notification for this product.
    Date Public
    2021-08-10 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T00:12:50.394Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34532"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:asp.net_core:2.1*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "ASP.NET Core 2.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "2.1.29",
                  "status": "affected",
                  "version": "2.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:asp.net_core:3.1:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "ASP.NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "3.1.18",
                  "status": "affected",
                  "version": "3.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:asp.net_core:5.0:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "ASP.NET Core 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "5.0.9",
                  "status": "affected",
                  "version": "5.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.4.25",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.18",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.10",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.10.5",
                  "status": "affected",
                  "version": "16.10.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Visual Studio 2019 for Mac version 8.10",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "8.10.7",
                  "status": "affected",
                  "version": "8.1.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-08-10T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "ASP.NET Core and Visual Studio Information Disclosure Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Information Disclosure",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T19:54:05.650Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34532"
            }
          ],
          "title": "ASP.NET Core and Visual Studio Information Disclosure Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-34532",
        "datePublished": "2021-08-12T18:12:05.000Z",
        "dateReserved": "2021-06-09T00:00:00.000Z",
        "dateUpdated": "2024-08-04T00:12:50.394Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-34485 (GCVE-0-2021-34485)

    Vulnerability from nvd – Published: 2021-08-12 18:11 – Updated: 2024-08-04 00:12
    VLAI
    Title
    .NET Core and Visual Studio Information Disclosure Vulnerability
    Summary
    .NET Core and Visual Studio Information Disclosure Vulnerability
    CWE
    • Information Disclosure
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < 15.9.38 (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < 16.4.25 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.18 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.10 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9) Affected: 16.10.0 , < 16.10.5 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft PowerShell 7.1 Affected: 7.1.0 , < 7.1.4 (custom)
        cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft PowerShell 7.0 Affected: 7.0.0 , < 7.0.7 (custom)
        cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET Core 2.1 Affected: 2.1 , < 2.1.30 (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET Core 3.1 Affected: 3.1 , < 3.1.18 (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET 5.0 Affected: 5.0.0 , < 5.0.9 (custom)
        cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-08-10 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T00:12:50.369Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34485"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "15.9.38",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.4.25",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.18",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.10",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.10.5",
                  "status": "affected",
                  "version": "16.10.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell 7.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "7.1.4",
                  "status": "affected",
                  "version": "7.1.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell 7.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "7.0.7",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 2.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "2.1.30",
                  "status": "affected",
                  "version": "2.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "3.1.18",
                  "status": "affected",
                  "version": "3.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "5.0.9",
                  "status": "affected",
                  "version": "5.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-08-10T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": ".NET Core and Visual Studio Information Disclosure Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Information Disclosure",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T19:54:07.748Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34485"
            }
          ],
          "title": ".NET Core and Visual Studio Information Disclosure Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-34485",
        "datePublished": "2021-08-12T18:11:57.000Z",
        "dateReserved": "2021-06-09T00:00:00.000Z",
        "dateUpdated": "2024-08-04T00:12:50.369Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-26423 (GCVE-0-2021-26423)

    Vulnerability from nvd – Published: 2021-08-12 18:11 – Updated: 2026-05-28 18:48
    VLAI
    Title
    .NET Core and Visual Studio Denial of Service Vulnerability
    Summary
    .NET Core and Visual Studio Denial of Service Vulnerability
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < 15.9.38 (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < 16.4.25 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.18 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.10 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9) Affected: 16.10.0 , < 16.10.5 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Visual Studio 2019 for Mac version 8.10 Affected: 8.1.0 , < 8.10.7 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*
    Create a notification for this product.
    Microsoft .NET Core 2.1 Affected: 2.1 , < 2.1.30 (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET Core 3.1 Affected: 3.1 , < 3.1.18 (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET 5.0 Affected: 5.0.0 , < 5.0.9 (custom)
        cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft PowerShell Core 7.1 Affected: 7.1.0 , < 7.1.4 (custom)
        cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft PowerShell Core 7.0 Affected: 7.0.0 , < 7.0.7 (custom)
        cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-08-10 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T20:26:25.161Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26423"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-26423",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-06-04T13:28:43.832819Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "description": "CWE-noinfo Not enough information",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-28T18:48:05.221Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "15.9.38",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.4.25",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.18",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.10",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.10.5",
                  "status": "affected",
                  "version": "16.10.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Visual Studio 2019 for Mac version 8.10",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "8.10.7",
                  "status": "affected",
                  "version": "8.1.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 2.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "2.1.30",
                  "status": "affected",
                  "version": "2.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "3.1.18",
                  "status": "affected",
                  "version": "3.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "5.0.9",
                  "status": "affected",
                  "version": "5.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell Core 7.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "7.1.4",
                  "status": "affected",
                  "version": "7.1.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell Core 7.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "7.0.7",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-08-10T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": ".NET Core and Visual Studio Denial of Service Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Denial of Service",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T19:53:54.266Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26423"
            }
          ],
          "title": ".NET Core and Visual Studio Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-26423",
        "datePublished": "2021-08-12T18:11:31.000Z",
        "dateReserved": "2021-01-29T00:00:00.000Z",
        "dateUpdated": "2026-05-28T18:48:05.221Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2021-31957 (GCVE-0-2021-31957)

    Vulnerability from nvd – Published: 2021-06-08 22:46 – Updated: 2024-08-03 23:10
    VLAI
    Title
    ASP.NET Core Denial of Service Vulnerability
    Summary
    ASP.NET Core Denial of Service Vulnerability
    CWE
    • Denial of Service
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < 16.4.23 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.16 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.7 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9) Affected: 16.10.0 , < 16.10.1 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Visual Studio 2019 for Mac version 8.10 Affected: 8.1.0 , < 8.10.1 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*
    Create a notification for this product.
    Microsoft .NET Core 3.1 Affected: 3.1 , < 3.1.16 (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET 5.0 Affected: 5.0.0 , < 5.0.7 (custom)
        cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-06-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T23:10:31.331Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31957"
              },
              {
                "name": "FEDORA-2021-4b3fc547fe",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PMHWHRRYDHKM6BIINW5V7OCSW4SDWB4W/"
              },
              {
                "name": "FEDORA-2021-cb4f3ab817",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4PRVVLXXQEF4SEJOBV3VRJHGX7YHY2CG/"
              },
              {
                "name": "FEDORA-2021-1e0e04958d",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VMAO4NG2OQ4PCXUQWMNSCMYWLIJJY6UY/"
              },
              {
                "name": "FEDORA-2021-e9c84e6d26",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CVCDYIP4A6DDRT7G6P3ZW6PKNK2DNWJ2/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.4.23",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.16",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.7",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.10.1",
                  "status": "affected",
                  "version": "16.10.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Visual Studio 2019 for Mac version 8.10",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "8.10.1",
                  "status": "affected",
                  "version": "8.1.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "3.1.16",
                  "status": "affected",
                  "version": "3.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "5.0.7",
                  "status": "affected",
                  "version": "5.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-06-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "ASP.NET Core Denial of Service Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 5.9,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Denial of Service",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-05-29T14:55:32.372Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31957"
            },
            {
              "name": "FEDORA-2021-4b3fc547fe",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PMHWHRRYDHKM6BIINW5V7OCSW4SDWB4W/"
            },
            {
              "name": "FEDORA-2021-cb4f3ab817",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4PRVVLXXQEF4SEJOBV3VRJHGX7YHY2CG/"
            },
            {
              "name": "FEDORA-2021-1e0e04958d",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VMAO4NG2OQ4PCXUQWMNSCMYWLIJJY6UY/"
            },
            {
              "name": "FEDORA-2021-e9c84e6d26",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CVCDYIP4A6DDRT7G6P3ZW6PKNK2DNWJ2/"
            }
          ],
          "title": "ASP.NET Core Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-31957",
        "datePublished": "2021-06-08T22:46:26.000Z",
        "dateReserved": "2021-04-30T00:00:00.000Z",
        "dateUpdated": "2024-08-03T23:10:31.331Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-31204 (GCVE-0-2021-31204)

    Vulnerability from nvd – Published: 2021-05-11 19:11 – Updated: 2024-08-03 22:55
    VLAI
    Title
    .NET and Visual Studio Elevation of Privilege Vulnerability
    Summary
    .NET and Visual Studio Elevation of Privilege Vulnerability
    CWE
    • Elevation of Privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft .NET Core 3.1 Affected: 3.1 , < 3.1.15-servicing.21214.3 (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET 5.0 Affected: 5.0.0 , < 5.0.6-servicing.21220.11 (custom)
        cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Visual Studio 2019 for Mac version 8.9 Affected: 8.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*
    Create a notification for this product.
    Date Public
    2021-05-11 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T22:55:53.545Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31204"
              },
              {
                "name": "FEDORA-2021-a3c205f5b2",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FVMWZPF4FR6JPFSNAIDIUDULHZJBVCW6/"
              },
              {
                "name": "FEDORA-2021-13e3bd248f",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6M7KL3KTHJVQNRA3CWFUTESQJARQEHSZ/"
              },
              {
                "name": "FEDORA-2021-721731dc86",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4F3VM3RMPE7PNNLLI3BPCSAXITQZCFCA/"
              },
              {
                "name": "FEDORA-2021-c06b64b5ee",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZWF25Z3CZ6LYCOHZ7FPSFAQ426JUBUZ4/"
              },
              {
                "name": "FEDORA-2021-f25eb9e302",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UV4ITB3SUDGR23G7XALUVKFJMZERFUKF/"
              },
              {
                "name": "FEDORA-2021-d551431950",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LFXJPQUYUITJMV75YN3XIGE3KKN5GOCU/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "3.1.15-servicing.21214.3",
                  "status": "affected",
                  "version": "3.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "5.0.6-servicing.21220.11",
                  "status": "affected",
                  "version": "5.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Visual Studio 2019 for Mac version 8.9",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "8.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-05-11T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": ".NET and Visual Studio Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.3,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T23:57:03.970Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31204"
            },
            {
              "name": "FEDORA-2021-a3c205f5b2",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FVMWZPF4FR6JPFSNAIDIUDULHZJBVCW6/"
            },
            {
              "name": "FEDORA-2021-13e3bd248f",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6M7KL3KTHJVQNRA3CWFUTESQJARQEHSZ/"
            },
            {
              "name": "FEDORA-2021-721731dc86",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4F3VM3RMPE7PNNLLI3BPCSAXITQZCFCA/"
            },
            {
              "name": "FEDORA-2021-c06b64b5ee",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZWF25Z3CZ6LYCOHZ7FPSFAQ426JUBUZ4/"
            },
            {
              "name": "FEDORA-2021-f25eb9e302",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UV4ITB3SUDGR23G7XALUVKFJMZERFUKF/"
            },
            {
              "name": "FEDORA-2021-d551431950",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LFXJPQUYUITJMV75YN3XIGE3KKN5GOCU/"
            }
          ],
          "title": ".NET and Visual Studio Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-31204",
        "datePublished": "2021-05-11T19:11:40.000Z",
        "dateReserved": "2021-04-14T00:00:00.000Z",
        "dateUpdated": "2024-08-03T22:55:53.545Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-27068 (GCVE-0-2021-27068)

    Vulnerability from nvd – Published: 2021-05-11 19:11 – Updated: 2024-11-19 14:56
    VLAI
    Title
    Visual Studio Remote Code Execution Vulnerability
    Summary
    Visual Studio Remote Code Execution Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Remote Code Execution
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-05-11 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T20:40:47.252Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27068"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-27068",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-08T19:14:30.372062Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-19T14:56:33.373Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-05-11T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Visual Studio Remote Code Execution Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Remote Code Execution",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T23:56:45.751Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27068"
            }
          ],
          "title": "Visual Studio Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-27068",
        "datePublished": "2021-05-11T19:11:13.000Z",
        "dateReserved": "2021-02-10T00:00:00.000Z",
        "dateUpdated": "2024-11-19T14:56:33.373Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-28322 (GCVE-0-2021-28322)

    Vulnerability from nvd – Published: 2021-04-13 19:32 – Updated: 2024-08-03 21:40
    VLAI
    Title
    Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability
    Summary
    Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability
    CWE
    • Elevation of Privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1803 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:arm64:*
    Create a notification for this product.
    Microsoft Windows 10 Version 1809 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
    Create a notification for this product.
    Microsoft Windows Server, version 1909 (Server Core installation) Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_1909:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows 10 Version 2004 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
    Create a notification for this product.
    Microsoft Windows Server version 2004 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_2004:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows 10 Version 20H2 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_20H2:*:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_20H2:*:*:*:*:*:*:arm64:*
    Create a notification for this product.
    Microsoft Windows Server version 20H2 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_20H2:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2015 Update 3 Affected: 14.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio:2015:update3:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-04-13 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T21:40:14.192Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28322"
              },
              {
                "name": "20210419 CVE-2021-28321-CVE-2021-28323: elevation of privileges in Microsoft Diaghub",
                "tags": [
                  "mailing-list",
                  "x_refsource_FULLDISC",
                  "x_transferred"
                ],
                "url": "http://seclists.org/fulldisclosure/2021/Apr/40"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/162251/Microsoft-DiagHub-Privilege-Escalation.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:arm64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 1803",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 1909",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_1909:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server, version 1909 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 2004",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2004:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server version 2004",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_20H2:*:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_20H2:*:*:*:*:*:*:arm64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 20H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_20H2:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server version 20H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio:2015:update3:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2015 Update 3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "14.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-04-13T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-29T19:21:14.048Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28322"
            },
            {
              "name": "20210419 CVE-2021-28321-CVE-2021-28323: elevation of privileges in Microsoft Diaghub",
              "tags": [
                "mailing-list",
                "x_refsource_FULLDISC"
              ],
              "url": "http://seclists.org/fulldisclosure/2021/Apr/40"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/162251/Microsoft-DiagHub-Privilege-Escalation.html"
            }
          ],
          "title": "Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-28322",
        "datePublished": "2021-04-13T19:32:56.000Z",
        "dateReserved": "2021-03-12T00:00:00.000Z",
        "dateUpdated": "2024-08-03T21:40:14.192Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-28321 (GCVE-0-2021-28321)

    Vulnerability from nvd – Published: 2021-04-13 19:32 – Updated: 2024-08-03 21:40
    VLAI
    Title
    Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability
    Summary
    Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability
    CWE
    • Elevation of Privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1803 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:arm64:*
    Create a notification for this product.
    Microsoft Windows 10 Version 1809 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
    Create a notification for this product.
    Microsoft Windows Server, version 1909 (Server Core installation) Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_1909:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows 10 Version 2004 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
    Create a notification for this product.
    Microsoft Windows Server version 2004 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_2004:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows 10 Version 20H2 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_20H2:*:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_20H2:*:*:*:*:*:*:arm64:*
    Create a notification for this product.
    Microsoft Windows Server version 20H2 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_20H2:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2015 Update 3 Affected: 14.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio:2015:update3:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-04-13 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T21:40:14.051Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28321"
              },
              {
                "name": "20210419 CVE-2021-28321-CVE-2021-28323: elevation of privileges in Microsoft Diaghub",
                "tags": [
                  "mailing-list",
                  "x_refsource_FULLDISC",
                  "x_transferred"
                ],
                "url": "http://seclists.org/fulldisclosure/2021/Apr/40"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/162251/Microsoft-DiagHub-Privilege-Escalation.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:arm64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 1803",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 1909",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_1909:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server, version 1909 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 2004",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2004:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server version 2004",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_20H2:*:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_20H2:*:*:*:*:*:*:arm64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 20H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_20H2:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server version 20H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio:2015:update3:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2015 Update 3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "14.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-04-13T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-29T19:21:13.552Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28321"
            },
            {
              "name": "20210419 CVE-2021-28321-CVE-2021-28323: elevation of privileges in Microsoft Diaghub",
              "tags": [
                "mailing-list",
                "x_refsource_FULLDISC"
              ],
              "url": "http://seclists.org/fulldisclosure/2021/Apr/40"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/162251/Microsoft-DiagHub-Privilege-Escalation.html"
            }
          ],
          "title": "Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-28321",
        "datePublished": "2021-04-13T19:32:55.000Z",
        "dateReserved": "2021-03-12T00:00:00.000Z",
        "dateUpdated": "2024-08-03T21:40:14.051Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-28313 (GCVE-0-2021-28313)

    Vulnerability from nvd – Published: 2021-04-13 19:32 – Updated: 2024-08-03 21:40
    VLAI
    Title
    Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability
    Summary
    Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability
    CWE
    • Elevation of Privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1803 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:arm64:*
    Create a notification for this product.
    Microsoft Windows 10 Version 1809 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
    Create a notification for this product.
    Microsoft Windows Server, version 1909 (Server Core installation) Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_1909:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows 10 Version 2004 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
    Create a notification for this product.
    Microsoft Windows Server version 2004 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_2004:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows 10 Version 20H2 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_20H2:*:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_20H2:*:*:*:*:*:*:arm64:*
    Create a notification for this product.
    Microsoft Windows Server version 20H2 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_20H2:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2015 Update 3 Affected: 14.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio:2015:update3:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-04-13 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T21:40:13.305Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28313"
              },
              {
                "name": "20210419 CVE-2021-28321-CVE-2021-28323: elevation of privileges in Microsoft Diaghub",
                "tags": [
                  "mailing-list",
                  "x_refsource_FULLDISC",
                  "x_transferred"
                ],
                "url": "http://seclists.org/fulldisclosure/2021/Apr/40"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/162251/Microsoft-DiagHub-Privilege-Escalation.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:arm64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 1803",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 1909",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_1909:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server, version 1909 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 2004",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2004:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server version 2004",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_20H2:*:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_20H2:*:*:*:*:*:*:arm64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 20H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_20H2:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server version 20H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio:2015:update3:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2015 Update 3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "14.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-04-13T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-29T19:21:09.441Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28313"
            },
            {
              "name": "20210419 CVE-2021-28321-CVE-2021-28323: elevation of privileges in Microsoft Diaghub",
              "tags": [
                "mailing-list",
                "x_refsource_FULLDISC"
              ],
              "url": "http://seclists.org/fulldisclosure/2021/Apr/40"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/162251/Microsoft-DiagHub-Privilege-Escalation.html"
            }
          ],
          "title": "Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-28313",
        "datePublished": "2021-04-13T19:32:49.000Z",
        "dateReserved": "2021-03-12T00:00:00.000Z",
        "dateUpdated": "2024-08-03T21:40:13.305Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-27064 (GCVE-0-2021-27064)

    Vulnerability from nvd – Published: 2021-04-13 19:32 – Updated: 2025-08-15 14:51
    VLAI
    Title
    Visual Studio Installer Elevation of Privilege Vulnerability
    Summary
    Visual Studio Installer Elevation of Privilege Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-04-13 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T20:40:47.169Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27064"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-27064",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-08-15T14:51:35.098800Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-08-15T14:51:44.636Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-04-13T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Visual Studio Installer Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-29T19:21:51.866Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27064"
            }
          ],
          "title": "Visual Studio Installer Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-27064",
        "datePublished": "2021-04-13T19:32:36.000Z",
        "dateReserved": "2021-02-10T00:00:00.000Z",
        "dateUpdated": "2025-08-15T14:51:44.636Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-26701 (GCVE-0-2021-26701)

    Vulnerability from nvd – Published: 2021-02-25 23:02 – Updated: 2026-05-28 19:31
    VLAI
    Title
    .NET Core Remote Code Execution Vulnerability
    Summary
    .NET Core Remote Code Execution Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft .NET Core 2.1 Affected: 2.1 , < publication (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET Core 3.1 Affected: 3.1 , < publication (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET 5.0 Affected: 5.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Visual Studio 2019 for Mac Affected: 8.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:-:*:*:*:*:macos:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.8 (includes 16.0 - 16.7) Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.8:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft PowerShell Core 7.1 Affected: 7.1.0 , < publication (custom)
        cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft PowerShell Core 7.0 Affected: 7.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-02-09 08:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T20:33:40.798Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26701"
              },
              {
                "name": "FEDORA-2021-e2d218afe6",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XPUKFHIGP5YNJRRFWKDJ2XRS4WTFJNNK/"
              },
              {
                "name": "FEDORA-2021-904d0bd496",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TW3ZSJTTMZAFKGW7NJWTVVFZUYYU2SJZ/"
              },
              {
                "name": "FEDORA-2021-1b22f31541",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WA5WQJVHUL5C4XMJTLY3C67R4WP35EF4/"
              },
              {
                "name": "FEDORA-2021-138728e59b",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YLFATXASXW4OV2ZBSRP4G55HJH73QPBP/"
              },
              {
                "name": "FEDORA-2021-3da33cdc80",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UBOSSX7U6BSHV5RI74FCOW4ITJ5RRJR5/"
              },
              {
                "name": "FEDORA-2021-265a3c7cb9",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S2AZOUKMCHT2WBHR7MYDTYXWOBHZW5P5/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-26701",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-03T18:45:55.001089Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "description": "CWE-noinfo Not enough information",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-28T19:31:26.157Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 2.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "2.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "3.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "5.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:-:*:*:*:*:macos:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Visual Studio 2019 for Mac",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "8.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.8:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.8 (includes 16.0 - 16.7)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell Core 7.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "7.1.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell Core 7.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-02-09T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": ".NET Core Remote Code Execution Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Remote Code Execution",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-29T22:33:26.742Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26701"
            },
            {
              "name": "FEDORA-2021-e2d218afe6",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XPUKFHIGP5YNJRRFWKDJ2XRS4WTFJNNK/"
            },
            {
              "name": "FEDORA-2021-904d0bd496",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TW3ZSJTTMZAFKGW7NJWTVVFZUYYU2SJZ/"
            },
            {
              "name": "FEDORA-2021-1b22f31541",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WA5WQJVHUL5C4XMJTLY3C67R4WP35EF4/"
            },
            {
              "name": "FEDORA-2021-138728e59b",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YLFATXASXW4OV2ZBSRP4G55HJH73QPBP/"
            },
            {
              "name": "FEDORA-2021-3da33cdc80",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UBOSSX7U6BSHV5RI74FCOW4ITJ5RRJR5/"
            },
            {
              "name": "FEDORA-2021-265a3c7cb9",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S2AZOUKMCHT2WBHR7MYDTYXWOBHZW5P5/"
            }
          ],
          "title": ".NET Core Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-26701",
        "datePublished": "2021-02-25T23:02:00.000Z",
        "dateReserved": "2021-02-05T00:00:00.000Z",
        "dateUpdated": "2026-05-28T19:31:26.157Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2021-1721 (GCVE-0-2021-1721)

    Vulnerability from nvd – Published: 2021-02-25 23:01 – Updated: 2026-05-28 19:30
    VLAI
    Title
    .NET Core and Visual Studio Denial of Service Vulnerability
    Summary
    .NET Core and Visual Studio Denial of Service Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft PowerShell Core 7.1 Affected: 7.1.0 , < publication (custom)
        cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft PowerShell Core 7.0 Affected: 7.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET Core 2.1 Affected: 2.1 , < publication (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET Core 3.1 Affected: 3.1 , < publication (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET 5.0 Affected: 5.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.8 Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-02-09 08:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T16:18:11.551Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1721"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-1721",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-03T18:38:54.615731Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "description": "CWE-noinfo Not enough information",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-28T19:30:20.892Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell Core 7.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "7.1.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell Core 7.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 2.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "2.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "3.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "5.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.8",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-02-09T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": ".NET Core and Visual Studio Denial of Service Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Denial of Service",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-29T22:33:17.653Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1721"
            }
          ],
          "title": ".NET Core and Visual Studio Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-1721",
        "datePublished": "2021-02-25T23:01:26.000Z",
        "dateReserved": "2020-12-02T00:00:00.000Z",
        "dateUpdated": "2026-05-28T19:30:20.892Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2021-1639 (GCVE-0-2021-1639)

    Vulnerability from nvd – Published: 2021-02-25 23:01 – Updated: 2024-08-03 16:18
    VLAI
    Title
    Visual Studio Code Remote Code Execution Vulnerability
    Summary
    Visual Studio Code Remote Code Execution Vulnerability
    CWE
    • Remote Code Execution
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2019 version 16.8 Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Visual Studio Code Affected: 1.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_code:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-02-09 08:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T16:18:10.428Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1639"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.8",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_code:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Visual Studio Code",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "1.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-02-09T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Visual Studio Code Remote Code Execution Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Remote Code Execution",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-29T22:33:16.842Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1639"
            }
          ],
          "title": "Visual Studio Code Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-1639",
        "datePublished": "2021-02-25T23:01:24.000Z",
        "dateReserved": "2020-12-02T00:00:00.000Z",
        "dateUpdated": "2024-08-03T16:18:10.428Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-36952 (GCVE-0-2021-36952)

    Vulnerability from cvelistv5 – Published: 2021-09-15 11:23 – Updated: 2024-08-04 01:09
    VLAI
    Title
    Visual Studio Remote Code Execution Vulnerability
    Summary
    Visual Studio Remote Code Execution Vulnerability
    CWE
    • Remote Code Execution
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < 15.9.39 (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < 16.4.26 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.19 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-09-14 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T01:09:07.413Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36952"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1076/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "15.9.39",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.4.26",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.19",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-09-14T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Visual Studio Remote Code Execution Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Remote Code Execution",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T19:37:00.478Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36952"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1076/"
            }
          ],
          "title": "Visual Studio Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-36952",
        "datePublished": "2021-09-15T11:23:30.000Z",
        "dateReserved": "2021-07-19T00:00:00.000Z",
        "dateUpdated": "2024-08-04T01:09:07.413Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-26434 (GCVE-0-2021-26434)

    Vulnerability from cvelistv5 – Published: 2021-09-15 11:23 – Updated: 2024-08-03 20:26
    VLAI
    Title
    Visual Studio Elevation of Privilege Vulnerability
    Summary
    Visual Studio Elevation of Privilege Vulnerability
    CWE
    • Elevation of Privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < 15.9.39 (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < 16.4.26 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.19 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.11 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10) Affected: 16.11.0 , < 16.11.3 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-09-14 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T20:26:25.193Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26434"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1077/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "15.9.39",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.4.26",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.19",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.11",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.11.3",
                  "status": "affected",
                  "version": "16.11.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-09-14T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Visual Studio Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T19:37:25.359Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26434"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1077/"
            }
          ],
          "title": "Visual Studio Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-26434",
        "datePublished": "2021-09-15T11:23:00.000Z",
        "dateReserved": "2021-01-29T00:00:00.000Z",
        "dateUpdated": "2024-08-03T20:26:25.193Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-34532 (GCVE-0-2021-34532)

    Vulnerability from cvelistv5 – Published: 2021-08-12 18:12 – Updated: 2024-08-04 00:12
    VLAI
    Title
    ASP.NET Core and Visual Studio Information Disclosure Vulnerability
    Summary
    ASP.NET Core and Visual Studio Information Disclosure Vulnerability
    CWE
    • Information Disclosure
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft ASP.NET Core 2.1 Affected: 2.0 , < 2.1.29 (custom)
        cpe:2.3:a:microsoft:asp.net_core:2.1*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft ASP.NET Core 3.1 Affected: 3.0 , < 3.1.18 (custom)
        cpe:2.3:a:microsoft:asp.net_core:3.1:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft ASP.NET Core 5.0 Affected: 5.0 , < 5.0.9 (custom)
        cpe:2.3:a:microsoft:asp.net_core:5.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < 16.4.25 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.18 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.10 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9) Affected: 16.10.0 , < 16.10.5 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Visual Studio 2019 for Mac version 8.10 Affected: 8.1.0 , < 8.10.7 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*
    Create a notification for this product.
    Date Public
    2021-08-10 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T00:12:50.394Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34532"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:asp.net_core:2.1*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "ASP.NET Core 2.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "2.1.29",
                  "status": "affected",
                  "version": "2.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:asp.net_core:3.1:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "ASP.NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "3.1.18",
                  "status": "affected",
                  "version": "3.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:asp.net_core:5.0:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "ASP.NET Core 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "5.0.9",
                  "status": "affected",
                  "version": "5.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.4.25",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.18",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.10",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.10.5",
                  "status": "affected",
                  "version": "16.10.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Visual Studio 2019 for Mac version 8.10",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "8.10.7",
                  "status": "affected",
                  "version": "8.1.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-08-10T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "ASP.NET Core and Visual Studio Information Disclosure Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Information Disclosure",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T19:54:05.650Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34532"
            }
          ],
          "title": "ASP.NET Core and Visual Studio Information Disclosure Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-34532",
        "datePublished": "2021-08-12T18:12:05.000Z",
        "dateReserved": "2021-06-09T00:00:00.000Z",
        "dateUpdated": "2024-08-04T00:12:50.394Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-34485 (GCVE-0-2021-34485)

    Vulnerability from cvelistv5 – Published: 2021-08-12 18:11 – Updated: 2024-08-04 00:12
    VLAI
    Title
    .NET Core and Visual Studio Information Disclosure Vulnerability
    Summary
    .NET Core and Visual Studio Information Disclosure Vulnerability
    CWE
    • Information Disclosure
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < 15.9.38 (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < 16.4.25 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.18 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.10 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9) Affected: 16.10.0 , < 16.10.5 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft PowerShell 7.1 Affected: 7.1.0 , < 7.1.4 (custom)
        cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft PowerShell 7.0 Affected: 7.0.0 , < 7.0.7 (custom)
        cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET Core 2.1 Affected: 2.1 , < 2.1.30 (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET Core 3.1 Affected: 3.1 , < 3.1.18 (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET 5.0 Affected: 5.0.0 , < 5.0.9 (custom)
        cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-08-10 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T00:12:50.369Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34485"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "15.9.38",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.4.25",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.18",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.10",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.10.5",
                  "status": "affected",
                  "version": "16.10.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell 7.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "7.1.4",
                  "status": "affected",
                  "version": "7.1.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell 7.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "7.0.7",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 2.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "2.1.30",
                  "status": "affected",
                  "version": "2.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "3.1.18",
                  "status": "affected",
                  "version": "3.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "5.0.9",
                  "status": "affected",
                  "version": "5.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-08-10T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": ".NET Core and Visual Studio Information Disclosure Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Information Disclosure",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T19:54:07.748Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34485"
            }
          ],
          "title": ".NET Core and Visual Studio Information Disclosure Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-34485",
        "datePublished": "2021-08-12T18:11:57.000Z",
        "dateReserved": "2021-06-09T00:00:00.000Z",
        "dateUpdated": "2024-08-04T00:12:50.369Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-26423 (GCVE-0-2021-26423)

    Vulnerability from cvelistv5 – Published: 2021-08-12 18:11 – Updated: 2026-05-28 18:48
    VLAI
    Title
    .NET Core and Visual Studio Denial of Service Vulnerability
    Summary
    .NET Core and Visual Studio Denial of Service Vulnerability
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < 15.9.38 (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < 16.4.25 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.18 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.10 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9) Affected: 16.10.0 , < 16.10.5 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Visual Studio 2019 for Mac version 8.10 Affected: 8.1.0 , < 8.10.7 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*
    Create a notification for this product.
    Microsoft .NET Core 2.1 Affected: 2.1 , < 2.1.30 (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET Core 3.1 Affected: 3.1 , < 3.1.18 (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET 5.0 Affected: 5.0.0 , < 5.0.9 (custom)
        cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft PowerShell Core 7.1 Affected: 7.1.0 , < 7.1.4 (custom)
        cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft PowerShell Core 7.0 Affected: 7.0.0 , < 7.0.7 (custom)
        cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-08-10 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T20:26:25.161Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26423"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-26423",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-06-04T13:28:43.832819Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "description": "CWE-noinfo Not enough information",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-28T18:48:05.221Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "15.9.38",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.4.25",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.18",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.10",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.10.5",
                  "status": "affected",
                  "version": "16.10.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Visual Studio 2019 for Mac version 8.10",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "8.10.7",
                  "status": "affected",
                  "version": "8.1.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 2.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "2.1.30",
                  "status": "affected",
                  "version": "2.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "3.1.18",
                  "status": "affected",
                  "version": "3.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "5.0.9",
                  "status": "affected",
                  "version": "5.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell Core 7.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "7.1.4",
                  "status": "affected",
                  "version": "7.1.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell Core 7.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "7.0.7",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-08-10T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": ".NET Core and Visual Studio Denial of Service Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Denial of Service",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T19:53:54.266Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26423"
            }
          ],
          "title": ".NET Core and Visual Studio Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-26423",
        "datePublished": "2021-08-12T18:11:31.000Z",
        "dateReserved": "2021-01-29T00:00:00.000Z",
        "dateUpdated": "2026-05-28T18:48:05.221Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2021-31957 (GCVE-0-2021-31957)

    Vulnerability from cvelistv5 – Published: 2021-06-08 22:46 – Updated: 2024-08-03 23:10
    VLAI
    Title
    ASP.NET Core Denial of Service Vulnerability
    Summary
    ASP.NET Core Denial of Service Vulnerability
    CWE
    • Denial of Service
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < 16.4.23 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.16 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.7 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9) Affected: 16.10.0 , < 16.10.1 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Visual Studio 2019 for Mac version 8.10 Affected: 8.1.0 , < 8.10.1 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*
    Create a notification for this product.
    Microsoft .NET Core 3.1 Affected: 3.1 , < 3.1.16 (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET 5.0 Affected: 5.0.0 , < 5.0.7 (custom)
        cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-06-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T23:10:31.331Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31957"
              },
              {
                "name": "FEDORA-2021-4b3fc547fe",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PMHWHRRYDHKM6BIINW5V7OCSW4SDWB4W/"
              },
              {
                "name": "FEDORA-2021-cb4f3ab817",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4PRVVLXXQEF4SEJOBV3VRJHGX7YHY2CG/"
              },
              {
                "name": "FEDORA-2021-1e0e04958d",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VMAO4NG2OQ4PCXUQWMNSCMYWLIJJY6UY/"
              },
              {
                "name": "FEDORA-2021-e9c84e6d26",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CVCDYIP4A6DDRT7G6P3ZW6PKNK2DNWJ2/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.4.23",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.16",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.7",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.10.1",
                  "status": "affected",
                  "version": "16.10.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Visual Studio 2019 for Mac version 8.10",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "8.10.1",
                  "status": "affected",
                  "version": "8.1.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "3.1.16",
                  "status": "affected",
                  "version": "3.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "5.0.7",
                  "status": "affected",
                  "version": "5.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-06-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "ASP.NET Core Denial of Service Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 5.9,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Denial of Service",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-05-29T14:55:32.372Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31957"
            },
            {
              "name": "FEDORA-2021-4b3fc547fe",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PMHWHRRYDHKM6BIINW5V7OCSW4SDWB4W/"
            },
            {
              "name": "FEDORA-2021-cb4f3ab817",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4PRVVLXXQEF4SEJOBV3VRJHGX7YHY2CG/"
            },
            {
              "name": "FEDORA-2021-1e0e04958d",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VMAO4NG2OQ4PCXUQWMNSCMYWLIJJY6UY/"
            },
            {
              "name": "FEDORA-2021-e9c84e6d26",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CVCDYIP4A6DDRT7G6P3ZW6PKNK2DNWJ2/"
            }
          ],
          "title": "ASP.NET Core Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-31957",
        "datePublished": "2021-06-08T22:46:26.000Z",
        "dateReserved": "2021-04-30T00:00:00.000Z",
        "dateUpdated": "2024-08-03T23:10:31.331Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-31204 (GCVE-0-2021-31204)

    Vulnerability from cvelistv5 – Published: 2021-05-11 19:11 – Updated: 2024-08-03 22:55
    VLAI
    Title
    .NET and Visual Studio Elevation of Privilege Vulnerability
    Summary
    .NET and Visual Studio Elevation of Privilege Vulnerability
    CWE
    • Elevation of Privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft .NET Core 3.1 Affected: 3.1 , < 3.1.15-servicing.21214.3 (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET 5.0 Affected: 5.0.0 , < 5.0.6-servicing.21220.11 (custom)
        cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Visual Studio 2019 for Mac version 8.9 Affected: 8.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*
    Create a notification for this product.
    Date Public
    2021-05-11 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T22:55:53.545Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31204"
              },
              {
                "name": "FEDORA-2021-a3c205f5b2",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FVMWZPF4FR6JPFSNAIDIUDULHZJBVCW6/"
              },
              {
                "name": "FEDORA-2021-13e3bd248f",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6M7KL3KTHJVQNRA3CWFUTESQJARQEHSZ/"
              },
              {
                "name": "FEDORA-2021-721731dc86",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4F3VM3RMPE7PNNLLI3BPCSAXITQZCFCA/"
              },
              {
                "name": "FEDORA-2021-c06b64b5ee",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZWF25Z3CZ6LYCOHZ7FPSFAQ426JUBUZ4/"
              },
              {
                "name": "FEDORA-2021-f25eb9e302",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UV4ITB3SUDGR23G7XALUVKFJMZERFUKF/"
              },
              {
                "name": "FEDORA-2021-d551431950",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LFXJPQUYUITJMV75YN3XIGE3KKN5GOCU/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "3.1.15-servicing.21214.3",
                  "status": "affected",
                  "version": "3.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "5.0.6-servicing.21220.11",
                  "status": "affected",
                  "version": "5.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Visual Studio 2019 for Mac version 8.9",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "8.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-05-11T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": ".NET and Visual Studio Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.3,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T23:57:03.970Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31204"
            },
            {
              "name": "FEDORA-2021-a3c205f5b2",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FVMWZPF4FR6JPFSNAIDIUDULHZJBVCW6/"
            },
            {
              "name": "FEDORA-2021-13e3bd248f",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6M7KL3KTHJVQNRA3CWFUTESQJARQEHSZ/"
            },
            {
              "name": "FEDORA-2021-721731dc86",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4F3VM3RMPE7PNNLLI3BPCSAXITQZCFCA/"
            },
            {
              "name": "FEDORA-2021-c06b64b5ee",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZWF25Z3CZ6LYCOHZ7FPSFAQ426JUBUZ4/"
            },
            {
              "name": "FEDORA-2021-f25eb9e302",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UV4ITB3SUDGR23G7XALUVKFJMZERFUKF/"
            },
            {
              "name": "FEDORA-2021-d551431950",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LFXJPQUYUITJMV75YN3XIGE3KKN5GOCU/"
            }
          ],
          "title": ".NET and Visual Studio Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-31204",
        "datePublished": "2021-05-11T19:11:40.000Z",
        "dateReserved": "2021-04-14T00:00:00.000Z",
        "dateUpdated": "2024-08-03T22:55:53.545Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-27068 (GCVE-0-2021-27068)

    Vulnerability from cvelistv5 – Published: 2021-05-11 19:11 – Updated: 2024-11-19 14:56
    VLAI
    Title
    Visual Studio Remote Code Execution Vulnerability
    Summary
    Visual Studio Remote Code Execution Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Remote Code Execution
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-05-11 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T20:40:47.252Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27068"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-27068",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-08T19:14:30.372062Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-19T14:56:33.373Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-05-11T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Visual Studio Remote Code Execution Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Remote Code Execution",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T23:56:45.751Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27068"
            }
          ],
          "title": "Visual Studio Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-27068",
        "datePublished": "2021-05-11T19:11:13.000Z",
        "dateReserved": "2021-02-10T00:00:00.000Z",
        "dateUpdated": "2024-11-19T14:56:33.373Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-28322 (GCVE-0-2021-28322)

    Vulnerability from cvelistv5 – Published: 2021-04-13 19:32 – Updated: 2024-08-03 21:40
    VLAI
    Title
    Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability
    Summary
    Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability
    CWE
    • Elevation of Privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1803 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:arm64:*
    Create a notification for this product.
    Microsoft Windows 10 Version 1809 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
    Create a notification for this product.
    Microsoft Windows Server, version 1909 (Server Core installation) Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_1909:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows 10 Version 2004 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
    Create a notification for this product.
    Microsoft Windows Server version 2004 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_2004:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows 10 Version 20H2 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_20H2:*:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_20H2:*:*:*:*:*:*:arm64:*
    Create a notification for this product.
    Microsoft Windows Server version 20H2 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_20H2:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2015 Update 3 Affected: 14.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio:2015:update3:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-04-13 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T21:40:14.192Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28322"
              },
              {
                "name": "20210419 CVE-2021-28321-CVE-2021-28323: elevation of privileges in Microsoft Diaghub",
                "tags": [
                  "mailing-list",
                  "x_refsource_FULLDISC",
                  "x_transferred"
                ],
                "url": "http://seclists.org/fulldisclosure/2021/Apr/40"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/162251/Microsoft-DiagHub-Privilege-Escalation.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:arm64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 1803",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 1909",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_1909:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server, version 1909 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 2004",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2004:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server version 2004",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_20H2:*:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_20H2:*:*:*:*:*:*:arm64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 20H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_20H2:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server version 20H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio:2015:update3:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2015 Update 3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "14.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-04-13T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-29T19:21:14.048Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28322"
            },
            {
              "name": "20210419 CVE-2021-28321-CVE-2021-28323: elevation of privileges in Microsoft Diaghub",
              "tags": [
                "mailing-list",
                "x_refsource_FULLDISC"
              ],
              "url": "http://seclists.org/fulldisclosure/2021/Apr/40"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/162251/Microsoft-DiagHub-Privilege-Escalation.html"
            }
          ],
          "title": "Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-28322",
        "datePublished": "2021-04-13T19:32:56.000Z",
        "dateReserved": "2021-03-12T00:00:00.000Z",
        "dateUpdated": "2024-08-03T21:40:14.192Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-28321 (GCVE-0-2021-28321)

    Vulnerability from cvelistv5 – Published: 2021-04-13 19:32 – Updated: 2024-08-03 21:40
    VLAI
    Title
    Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability
    Summary
    Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability
    CWE
    • Elevation of Privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1803 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:arm64:*
    Create a notification for this product.
    Microsoft Windows 10 Version 1809 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
    Create a notification for this product.
    Microsoft Windows Server, version 1909 (Server Core installation) Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_1909:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows 10 Version 2004 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
    Create a notification for this product.
    Microsoft Windows Server version 2004 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_2004:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows 10 Version 20H2 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_20H2:*:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_20H2:*:*:*:*:*:*:arm64:*
    Create a notification for this product.
    Microsoft Windows Server version 20H2 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_20H2:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2015 Update 3 Affected: 14.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio:2015:update3:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-04-13 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T21:40:14.051Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28321"
              },
              {
                "name": "20210419 CVE-2021-28321-CVE-2021-28323: elevation of privileges in Microsoft Diaghub",
                "tags": [
                  "mailing-list",
                  "x_refsource_FULLDISC",
                  "x_transferred"
                ],
                "url": "http://seclists.org/fulldisclosure/2021/Apr/40"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/162251/Microsoft-DiagHub-Privilege-Escalation.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:arm64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 1803",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 1909",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_1909:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server, version 1909 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 2004",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2004:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server version 2004",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_20H2:*:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_20H2:*:*:*:*:*:*:arm64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 20H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_20H2:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server version 20H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio:2015:update3:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2015 Update 3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "14.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-04-13T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-29T19:21:13.552Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28321"
            },
            {
              "name": "20210419 CVE-2021-28321-CVE-2021-28323: elevation of privileges in Microsoft Diaghub",
              "tags": [
                "mailing-list",
                "x_refsource_FULLDISC"
              ],
              "url": "http://seclists.org/fulldisclosure/2021/Apr/40"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/162251/Microsoft-DiagHub-Privilege-Escalation.html"
            }
          ],
          "title": "Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-28321",
        "datePublished": "2021-04-13T19:32:55.000Z",
        "dateReserved": "2021-03-12T00:00:00.000Z",
        "dateUpdated": "2024-08-03T21:40:14.051Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-28313 (GCVE-0-2021-28313)

    Vulnerability from cvelistv5 – Published: 2021-04-13 19:32 – Updated: 2024-08-03 21:40
    VLAI
    Title
    Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability
    Summary
    Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability
    CWE
    • Elevation of Privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1803 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:arm64:*
    Create a notification for this product.
    Microsoft Windows 10 Version 1809 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
    Create a notification for this product.
    Microsoft Windows Server, version 1909 (Server Core installation) Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_1909:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows 10 Version 2004 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*
    Create a notification for this product.
    Microsoft Windows Server version 2004 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_2004:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows 10 Version 20H2 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_10_20H2:*:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_20H2:*:*:*:*:*:*:arm64:*
    Create a notification for this product.
    Microsoft Windows Server version 20H2 Affected: 10.0.0 , < publication (custom)
        cpe:2.3:o:microsoft:windows_server_20H2:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2015 Update 3 Affected: 14.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio:2015:update3:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-04-13 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T21:40:13.305Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28313"
              },
              {
                "name": "20210419 CVE-2021-28321-CVE-2021-28323: elevation of privileges in Microsoft Diaghub",
                "tags": [
                  "mailing-list",
                  "x_refsource_FULLDISC",
                  "x_transferred"
                ],
                "url": "http://seclists.org/fulldisclosure/2021/Apr/40"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/162251/Microsoft-DiagHub-Privilege-Escalation.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1803:*:*:*:*:*:*:arm64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 1803",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 1909",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_1909:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server, version 1909 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 2004",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2004:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server version 2004",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_20H2:*:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_20H2:*:*:*:*:*:*:arm64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 20H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_20H2:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server version 20H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio:2015:update3:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2015 Update 3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "14.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-04-13T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-29T19:21:09.441Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28313"
            },
            {
              "name": "20210419 CVE-2021-28321-CVE-2021-28323: elevation of privileges in Microsoft Diaghub",
              "tags": [
                "mailing-list",
                "x_refsource_FULLDISC"
              ],
              "url": "http://seclists.org/fulldisclosure/2021/Apr/40"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/162251/Microsoft-DiagHub-Privilege-Escalation.html"
            }
          ],
          "title": "Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-28313",
        "datePublished": "2021-04-13T19:32:49.000Z",
        "dateReserved": "2021-03-12T00:00:00.000Z",
        "dateUpdated": "2024-08-03T21:40:13.305Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-27064 (GCVE-0-2021-27064)

    Vulnerability from cvelistv5 – Published: 2021-04-13 19:32 – Updated: 2025-08-15 14:51
    VLAI
    Title
    Visual Studio Installer Elevation of Privilege Vulnerability
    Summary
    Visual Studio Installer Elevation of Privilege Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Elevation of Privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-04-13 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T20:40:47.169Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27064"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-27064",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-08-15T14:51:35.098800Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-08-15T14:51:44.636Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-04-13T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Visual Studio Installer Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-29T19:21:51.866Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27064"
            }
          ],
          "title": "Visual Studio Installer Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-27064",
        "datePublished": "2021-04-13T19:32:36.000Z",
        "dateReserved": "2021-02-10T00:00:00.000Z",
        "dateUpdated": "2025-08-15T14:51:44.636Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-26701 (GCVE-0-2021-26701)

    Vulnerability from cvelistv5 – Published: 2021-02-25 23:02 – Updated: 2026-05-28 19:31
    VLAI
    Title
    .NET Core Remote Code Execution Vulnerability
    Summary
    .NET Core Remote Code Execution Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft .NET Core 2.1 Affected: 2.1 , < publication (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET Core 3.1 Affected: 3.1 , < publication (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET 5.0 Affected: 5.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Visual Studio 2019 for Mac Affected: 8.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:-:*:*:*:*:macos:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.8 (includes 16.0 - 16.7) Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.8:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft PowerShell Core 7.1 Affected: 7.1.0 , < publication (custom)
        cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft PowerShell Core 7.0 Affected: 7.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-02-09 08:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T20:33:40.798Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26701"
              },
              {
                "name": "FEDORA-2021-e2d218afe6",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XPUKFHIGP5YNJRRFWKDJ2XRS4WTFJNNK/"
              },
              {
                "name": "FEDORA-2021-904d0bd496",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TW3ZSJTTMZAFKGW7NJWTVVFZUYYU2SJZ/"
              },
              {
                "name": "FEDORA-2021-1b22f31541",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WA5WQJVHUL5C4XMJTLY3C67R4WP35EF4/"
              },
              {
                "name": "FEDORA-2021-138728e59b",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YLFATXASXW4OV2ZBSRP4G55HJH73QPBP/"
              },
              {
                "name": "FEDORA-2021-3da33cdc80",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UBOSSX7U6BSHV5RI74FCOW4ITJ5RRJR5/"
              },
              {
                "name": "FEDORA-2021-265a3c7cb9",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S2AZOUKMCHT2WBHR7MYDTYXWOBHZW5P5/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-26701",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-03T18:45:55.001089Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "description": "CWE-noinfo Not enough information",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-28T19:31:26.157Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 2.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "2.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "3.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "5.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:-:*:*:*:*:macos:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Visual Studio 2019 for Mac",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "8.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.8:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.8 (includes 16.0 - 16.7)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell Core 7.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "7.1.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell Core 7.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-02-09T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": ".NET Core Remote Code Execution Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Remote Code Execution",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-29T22:33:26.742Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26701"
            },
            {
              "name": "FEDORA-2021-e2d218afe6",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XPUKFHIGP5YNJRRFWKDJ2XRS4WTFJNNK/"
            },
            {
              "name": "FEDORA-2021-904d0bd496",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TW3ZSJTTMZAFKGW7NJWTVVFZUYYU2SJZ/"
            },
            {
              "name": "FEDORA-2021-1b22f31541",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WA5WQJVHUL5C4XMJTLY3C67R4WP35EF4/"
            },
            {
              "name": "FEDORA-2021-138728e59b",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YLFATXASXW4OV2ZBSRP4G55HJH73QPBP/"
            },
            {
              "name": "FEDORA-2021-3da33cdc80",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UBOSSX7U6BSHV5RI74FCOW4ITJ5RRJR5/"
            },
            {
              "name": "FEDORA-2021-265a3c7cb9",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S2AZOUKMCHT2WBHR7MYDTYXWOBHZW5P5/"
            }
          ],
          "title": ".NET Core Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-26701",
        "datePublished": "2021-02-25T23:02:00.000Z",
        "dateReserved": "2021-02-05T00:00:00.000Z",
        "dateUpdated": "2026-05-28T19:31:26.157Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2021-1721 (GCVE-0-2021-1721)

    Vulnerability from cvelistv5 – Published: 2021-02-25 23:01 – Updated: 2026-05-28 19:30
    VLAI
    Title
    .NET Core and Visual Studio Denial of Service Vulnerability
    Summary
    .NET Core and Visual Studio Denial of Service Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft PowerShell Core 7.1 Affected: 7.1.0 , < publication (custom)
        cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft PowerShell Core 7.0 Affected: 7.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET Core 2.1 Affected: 2.1 , < publication (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET Core 3.1 Affected: 3.1 , < publication (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET 5.0 Affected: 5.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.8 Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-02-09 08:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T16:18:11.551Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1721"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-1721",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-03T18:38:54.615731Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "description": "CWE-noinfo Not enough information",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-28T19:30:20.892Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell Core 7.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "7.1.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell Core 7.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 2.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "2.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "3.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "5.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.8",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-02-09T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": ".NET Core and Visual Studio Denial of Service Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Denial of Service",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-29T22:33:17.653Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1721"
            }
          ],
          "title": ".NET Core and Visual Studio Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-1721",
        "datePublished": "2021-02-25T23:01:26.000Z",
        "dateReserved": "2020-12-02T00:00:00.000Z",
        "dateUpdated": "2026-05-28T19:30:20.892Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2021-1639 (GCVE-0-2021-1639)

    Vulnerability from cvelistv5 – Published: 2021-02-25 23:01 – Updated: 2024-08-03 16:18
    VLAI
    Title
    Visual Studio Code Remote Code Execution Vulnerability
    Summary
    Visual Studio Code Remote Code Execution Vulnerability
    CWE
    • Remote Code Execution
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2019 version 16.8 Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Visual Studio Code Affected: 1.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_code:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-02-09 08:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T16:18:10.428Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1639"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.8",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_code:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Visual Studio Code",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "1.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-02-09T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Visual Studio Code Remote Code Execution Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Remote Code Execution",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-29T22:33:16.842Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1639"
            }
          ],
          "title": "Visual Studio Code Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-1639",
        "datePublished": "2021-02-25T23:01:24.000Z",
        "dateReserved": "2020-12-02T00:00:00.000Z",
        "dateUpdated": "2024-08-03T16:18:10.428Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }