Search

Find a vulnerability

Search criteria

    64 vulnerabilities found for Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) by Microsoft

    CVE-2022-24513 (GCVE-0-2022-24513)

    Vulnerability from nvd – Published: 2022-04-15 19:03 – Updated: 2025-01-02 18:51
    VLAI
    Title
    Visual Studio Elevation of Privilege Vulnerability
    Summary
    Visual Studio Elevation of Privilege Vulnerability
    CWE
    • Elevation of Privilege
    Assigner
    References
    Date Public
    2022-04-12 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T04:13:56.028Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "Visual Studio Elevation of Privilege Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24513"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "15.9.49",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.27",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.23",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Visual Studio 2019 for Mac version 8.10",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "8.10.24",
                  "status": "affected",
                  "version": "8.1.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.11.16",
                  "status": "affected",
                  "version": "16.11.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2022 version 17.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "17.0.12",
                  "status": "affected",
                  "version": "17.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2022 version 17.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "17.1.7",
                  "status": "affected",
                  "version": "17.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Visual Studio 2022 for Mac version 17.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "17.0.3",
                  "status": "affected",
                  "version": "17.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "15.9.49",
                      "versionStartIncluding": "15.9.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "16.7.27",
                      "versionStartIncluding": "16.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "16.9.23",
                      "versionStartIncluding": "15.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:macos:*:*",
                      "versionEndExcluding": "8.10.24",
                      "versionStartIncluding": "8.1.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "16.11.16",
                      "versionStartIncluding": "16.11.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "17.0.12",
                      "versionStartIncluding": "17.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "17.1.7",
                      "versionStartIncluding": "17.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "17.0.3",
                      "versionStartIncluding": "17.0.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2022-04-12T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Visual Studio Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-01-02T18:51:46.747Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Visual Studio Elevation of Privilege Vulnerability",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24513"
            }
          ],
          "title": "Visual Studio Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2022-24513",
        "datePublished": "2022-04-15T19:03:40.000Z",
        "dateReserved": "2022-02-05T00:00:00.000Z",
        "dateUpdated": "2025-01-02T18:51:46.747Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-24512 (GCVE-0-2022-24512)

    Vulnerability from nvd – Published: 2022-03-09 17:08 – Updated: 2026-05-27 13:58
    VLAI
    Title
    .NET and Visual Studio Remote Code Execution Vulnerability
    Summary
    .NET and Visual Studio Remote Code Execution Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • Remote Code Execution
    • CWE-94 - Improper Control of Generation of Code ('Code Injection')
    Assigner
    References
    Date Public
    2022-03-08 08:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T04:13:56.019Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": ".NET and Visual Studio Remote Code Execution Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24512"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-24512",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-20T16:45:59.698908Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-94",
                    "description": "CWE-94 Improper Control of Generation of Code (\u0027Code Injection\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-27T13:58:25.036Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.26",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.18",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.11.11",
                  "status": "affected",
                  "version": "16.11.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2022 version 17.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "17.0.7",
                  "status": "affected",
                  "version": "17.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "5.0.15",
                  "status": "affected",
                  "version": "5.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 6.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.0.3",
                  "status": "affected",
                  "version": "6.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "3.1.23",
                  "status": "affected",
                  "version": "3.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell 7.2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "7.2.2",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell 7.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "7.0.9",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell 7.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "7.1.6",
                  "status": "affected",
                  "version": "7.1.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "16.7.26",
                      "versionStartIncluding": "16.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "16.9.18",
                      "versionStartIncluding": "15.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "16.11.11",
                      "versionStartIncluding": "16.11.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "17.0.7",
                      "versionStartIncluding": "17.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "5.0.15",
                      "versionStartIncluding": "5.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "6.0.3",
                      "versionStartIncluding": "6.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "3.1.23",
                      "versionStartIncluding": "3.1",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:powershell:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "7.2.2",
                      "versionStartIncluding": "7.2.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "7.0.9",
                      "versionStartIncluding": "7.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "7.1.6",
                      "versionStartIncluding": "7.1.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2022-03-08T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": ".NET and Visual Studio Remote Code Execution Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Remote Code Execution",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-07-08T15:31:32.909Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": ".NET and Visual Studio Remote Code Execution Vulnerability",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24512"
            }
          ],
          "title": ".NET and Visual Studio Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2022-24512",
        "datePublished": "2022-03-09T17:08:15.000Z",
        "dateReserved": "2022-02-05T00:00:00.000Z",
        "dateUpdated": "2026-05-27T13:58:25.036Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2022-24464 (GCVE-0-2022-24464)

    Vulnerability from nvd – Published: 2022-03-09 17:07 – Updated: 2026-05-27 14:00
    VLAI
    Title
    .NET and Visual Studio Denial of Service Vulnerability
    Summary
    .NET and Visual Studio Denial of Service Vulnerability
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • Denial of Service
    • CWE-400 - Uncontrolled Resource Consumption
    Assigner
    References
    Date Public
    2022-03-08 08:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T04:13:55.503Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": ".NET and Visual Studio Denial of Service Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24464"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-24464",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-27T14:00:22.471008Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-400",
                    "description": "CWE-400 Uncontrolled Resource Consumption",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-27T14:00:53.670Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 6.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.0.3",
                  "status": "affected",
                  "version": "6.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "5.0.15",
                  "status": "affected",
                  "version": "5.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "3.1.23",
                  "status": "affected",
                  "version": "3.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.26",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.18",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.11.11",
                  "status": "affected",
                  "version": "16.11.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2022 version 17.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "17.0.7",
                  "status": "affected",
                  "version": "17.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "6.0.3",
                      "versionStartIncluding": "6.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "5.0.15",
                      "versionStartIncluding": "5.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "3.1.23",
                      "versionStartIncluding": "3.1",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "16.7.26",
                      "versionStartIncluding": "16.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "16.9.18",
                      "versionStartIncluding": "15.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "16.11.11",
                      "versionStartIncluding": "16.11.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "17.0.7",
                      "versionStartIncluding": "17.0.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2022-03-08T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": ".NET and Visual Studio Denial of Service Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Denial of Service",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-07-08T15:31:40.520Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": ".NET and Visual Studio Denial of Service Vulnerability",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24464"
            }
          ],
          "title": ".NET and Visual Studio Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2022-24464",
        "datePublished": "2022-03-09T17:07:46.000Z",
        "dateReserved": "2022-02-05T00:00:00.000Z",
        "dateUpdated": "2026-05-27T14:00:53.670Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2022-21871 (GCVE-0-2022-21871)

    Vulnerability from nvd – Published: 2022-01-11 20:22 – Updated: 2025-01-02 18:22
    VLAI
    Title
    Microsoft Diagnostics Hub Standard Collector Runtime Elevation of Privilege Vulnerability
    Summary
    Microsoft Diagnostics Hub Standard Collector Runtime Elevation of Privilege Vulnerability
    CWE
    • Elevation of Privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.2452 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1809 Affected: 10.0.0 , < 10.0.17763.2452 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.2452 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.2452 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 Affected: 10.0.0 , < 10.0.18363.2037 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H1 Affected: 10.0.0 , < 10.0.19043.1466 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022 Affected: 10.0.20348.0 , < 10.0.20348.469 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 20H2 Affected: 10.0.0 , < 10.0.19042.1466 (custom)
    Create a notification for this product.
    Microsoft Windows Server version 20H2 Affected: 10.0.0 , < 10.0.19042.1466 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.0 , < 10.0.22000.434 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19043.1466 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1507 Affected: 10.0.10240.0 , < 10.0.10240.19177 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1607 Affected: 10.0.14393.0 , < 10.0.14393.4886 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 Affected: 10.0.14393.0 , < 10.0.14393.4886 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 (Server Core installation) Affected: 10.0.14393.0 , < 10.0.14393.4886 (custom)
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < 15.9.44 (custom)
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.25 (custom)
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.17 (custom)
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2015 Update 3 Affected: 14.0.0 , < 27551.00 (custom)
    Create a notification for this product.
    Date Public
    2022-01-11 08:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T02:53:36.400Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21871"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.2452",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.2452",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.2452",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.2452",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 1909",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.18363.2037",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems",
                "ARM64-based Systems",
                "32-bit Systems"
              ],
              "product": "Windows 10 Version 21H1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19043.1466",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.20348.469",
                  "status": "affected",
                  "version": "10.0.20348.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 20H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19042.1466",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server version 20H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19042.1466",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.434",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19043.1466",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1507",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.10240.19177",
                  "status": "affected",
                  "version": "10.0.10240.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1607",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.4886",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.4886",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.4886",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "15.9.44",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.25",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.17",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2015 Update 3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "27551.00",
                  "status": "affected",
                  "version": "14.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.2452",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.17763.2452",
                      "versionStartIncluding": "10.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.2452",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.2452",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.18363.2037",
                      "versionStartIncluding": "10.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H1:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19043.1466",
                      "versionStartIncluding": "10.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.20348.469",
                      "versionStartIncluding": "10.0.20348.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_20H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19042.1466",
                      "versionStartIncluding": "10.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_20H2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.19042.1466",
                      "versionStartIncluding": "10.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.434",
                      "versionStartIncluding": "10.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19043.1466",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.10240.19177",
                      "versionStartIncluding": "10.0.10240.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.14393.4886",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.4886",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.4886",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "15.9.44",
                      "versionStartIncluding": "15.9.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "16.7.25",
                      "versionStartIncluding": "16.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "16.9.17",
                      "versionStartIncluding": "15.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio:*:update3:*:*:*:*:*:*",
                      "versionEndExcluding": "27551.00",
                      "versionStartIncluding": "14.0.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2022-01-11T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Microsoft Diagnostics Hub Standard Collector Runtime Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-01-02T18:22:22.488Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Microsoft Diagnostics Hub Standard Collector Runtime Elevation of Privilege Vulnerability",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21871"
            }
          ],
          "title": "Microsoft Diagnostics Hub Standard Collector Runtime Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2022-21871",
        "datePublished": "2022-01-11T20:22:40.000Z",
        "dateReserved": "2021-12-14T00:00:00.000Z",
        "dateUpdated": "2025-01-02T18:22:22.488Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-43877 (GCVE-0-2021-43877)

    Vulnerability from nvd – Published: 2021-12-15 14:15 – Updated: 2024-08-04 04:10
    VLAI
    Title
    ASP.NET Core and Visual Studio Elevation of Privilege Vulnerability
    Summary
    ASP.NET Core and Visual Studio Elevation of Privilege Vulnerability
    CWE
    • Elevation of Privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.23 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.15 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10) Affected: 16.11.0 , < 16.11.8 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2022 version 17.0 Affected: 17.0.0 , < 17.0.3 (custom)
        cpe:2.3:a:microsoft:visual_studio_2022:17.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft ASP.NET Core 3.1 Affected: 3.0 , < 3.1.22 (custom)
        cpe:2.3:a:microsoft:asp.net_core:3.1:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft ASP.NET Core 5.0 Affected: 5.0 , < 5.0.13 (custom)
        cpe:2.3:a:microsoft:asp.net_core:5.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft ASP.NET Core 6.0 Affected: 6.0 , < 6.0.101 (custom)
        cpe:2.3:a:microsoft:asp.net_core:6.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2022 version 17.1 Affected: 17.0.0 , < 17.1.4 (custom)
        cpe:2.3:a:microsoft:visual_studio_2022:17.1:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-12-14 08:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T04:10:17.113Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43877"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.23",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.15",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.11.8",
                  "status": "affected",
                  "version": "16.11.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2022:17.0:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2022 version 17.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "17.0.3",
                  "status": "affected",
                  "version": "17.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:asp.net_core:3.1:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "ASP.NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "3.1.22",
                  "status": "affected",
                  "version": "3.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:asp.net_core:5.0:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "ASP.NET Core 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "5.0.13",
                  "status": "affected",
                  "version": "5.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:asp.net_core:6.0:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "ASP.NET Core 6.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.0.101",
                  "status": "affected",
                  "version": "6.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2022:17.1:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2022 version 17.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "17.1.4",
                  "status": "affected",
                  "version": "17.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-12-14T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "ASP.NET Core and Visual Studio Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-05-29T14:44:33.540Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43877"
            }
          ],
          "title": "ASP.NET Core and Visual Studio Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-43877",
        "datePublished": "2021-12-15T14:15:31.000Z",
        "dateReserved": "2021-11-16T00:00:00.000Z",
        "dateUpdated": "2024-08-04T04:10:17.113Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-42319 (GCVE-0-2021-42319)

    Vulnerability from nvd – Published: 2021-11-10 00:47 – Updated: 2024-08-04 03:30
    VLAI
    Title
    Visual Studio Elevation of Privilege Vulnerability
    Summary
    Visual Studio Elevation of Privilege Vulnerability
    CWE
    • Elevation of Privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < 15.9.41 (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.21 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.13 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10) Affected: 16.11.0 , < 16.11.6 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-11-09 08:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T03:30:38.244Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42319"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "15.9.41",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.21",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.13",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.11.6",
                  "status": "affected",
                  "version": "16.11.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-11-09T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Visual Studio Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 4.7,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-05-29T14:47:45.942Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42319"
            }
          ],
          "title": "Visual Studio Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-42319",
        "datePublished": "2021-11-10T00:47:41.000Z",
        "dateReserved": "2021-10-12T00:00:00.000Z",
        "dateUpdated": "2024-08-04T03:30:38.244Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-42277 (GCVE-0-2021-42277)

    Vulnerability from nvd – Published: 2021-11-10 00:47 – Updated: 2024-08-04 03:30
    VLAI
    Title
    Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability
    Summary
    Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability
    CWE
    • Elevation of Privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1809 Affected: 10.0.0 , < 10.0.17763.2300 (custom)
        cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.2300:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.2300:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.2300:*:*:*:*:*:arm64:*
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.0 , < 10.0.17763.2300 (custom)
        cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.2300:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.0 , < 10.0.17763.2300 (custom)
        cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.2300:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 Affected: 10.0.0 , < 10.0.18363.1916 (custom)
        cpe:2.3:o:microsoft:windows_10_1909:10.0.18363.1916:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_1909:10.0.18363.1916:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1809:10.0.18363.1916:*:*:*:*:*:x64:*
    Create a notification for this product.
    Microsoft Windows 10 Version 21H1 Affected: 10.0.0 , < 10.0.19043.1348 (custom)
        cpe:2.3:o:microsoft:windows_10_21H1:10.0.19043.1348:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_21H1:10.0.19043.1348:*:*:*:*:*:arm64:*
        cpe:2.3:o:microsoft:windows_10_21H1:10.0.19043.1348:*:*:*:*:*:x86:*
    Create a notification for this product.
    Microsoft Windows Server 2022 Affected: 10.0.0 , < 10.0.20348.350 (custom)
        cpe:2.3:o:microsoft:windows_server_2022:10.0.20348.350:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows 10 Version 2004 Affected: 10.0.0 , < 10.0.19041.1348 (custom)
        cpe:2.3:o:microsoft:windows_10_1809:10.0.19041.1348:*:*:*:*:*:x64:*
    Create a notification for this product.
    Microsoft Windows Server version 2004 Affected: 10.0.0 , < 10.0.19041.1348 (custom)
        cpe:2.3:o:microsoft:windows_server_2004:10.0.19041.1348:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows 10 Version 20H2 Affected: 10.0.0 , < 10.0.19042.1348 (custom)
        cpe:2.3:o:microsoft:windows_10_20H2:10.0.19042.1348:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_20H2:10.0.19042.1348:*:*:*:*:*:arm64:*
    Create a notification for this product.
    Microsoft Windows Server version 20H2 Affected: 10.0.0 , < 10.0.19041.1348 (custom)
        cpe:2.3:o:microsoft:windows_server_20H2:10.0.19041.1348:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.0 , < 10.0.22000.318 (custom)
        cpe:2.3:o:microsoft:windows_11_21H2:10.0.22000.318:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_11_21H2:10.0.22000.318:*:*:*:*:*:arm64:*
    Create a notification for this product.
    Microsoft Windows 10 Version 1507 Affected: 10.0.0 , < 10.0.10240.19119 (custom)
        cpe:2.3:o:microsoft:windows_10_1507:10.0.10240.19119:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_1507:10.0.10240.19119:*:*:*:*:*:x64:*
    Create a notification for this product.
    Microsoft Windows 10 Version 1607 Affected: 10.0.0 , < 10.0.14393.4770 (custom)
        cpe:2.3:o:microsoft:windows_10_1607:10.0.14393.4770:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_1607:10.0.14393.4770:*:*:*:*:*:x64:*
    Create a notification for this product.
    Microsoft Windows Server 2016 Affected: 10.0.0 , < 10.0.14393.4770 (custom)
        cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4770:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows Server 2016 (Server Core installation) Affected: 10.0.0 , < 10.0.14393.4770 (custom)
        cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4770:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < 15.9.41 (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.21 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.13 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10) Affected: 16.11.0 , < 16.11.6 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2015 Update 3 Affected: 14.0.0 , < 27550.00 (custom)
        cpe:2.3:a:microsoft:visual_studio:2015:update3:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-11-09 08:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T03:30:37.813Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42277"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1306/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.2300:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.2300:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.2300:*:*:*:*:*:arm64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.2300",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.2300:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.2300",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.2300:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.2300",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1909:10.0.18363.1916:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_1909:10.0.18363.1916:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1809:10.0.18363.1916:*:*:*:*:*:x64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 1909",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.18363.1916",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_21H1:10.0.19043.1348:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_21H1:10.0.19043.1348:*:*:*:*:*:arm64:*",
                "cpe:2.3:o:microsoft:windows_10_21H1:10.0.19043.1348:*:*:*:*:*:x86:*"
              ],
              "platforms": [
                "x64-based Systems",
                "ARM64-based Systems",
                "32-bit Systems"
              ],
              "product": "Windows 10 Version 21H1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19043.1348",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2022:10.0.20348.350:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.20348.350",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1809:10.0.19041.1348:*:*:*:*:*:x64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 2004",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19041.1348",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2004:10.0.19041.1348:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server version 2004",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19041.1348",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_20H2:10.0.19042.1348:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_20H2:10.0.19042.1348:*:*:*:*:*:arm64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 20H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19042.1348",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_20H2:10.0.19041.1348:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server version 20H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19041.1348",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_11_21H2:10.0.22000.318:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_11_21H2:10.0.22000.318:*:*:*:*:*:arm64:*"
              ],
              "platforms": [
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.318",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1507:10.0.10240.19119:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_1507:10.0.10240.19119:*:*:*:*:*:x64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1507",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.10240.19119",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1607:10.0.14393.4770:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_1607:10.0.14393.4770:*:*:*:*:*:x64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1607",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.4770",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4770:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.4770",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4770:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.4770",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "15.9.41",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.21",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.13",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.11.6",
                  "status": "affected",
                  "version": "16.11.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio:2015:update3:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2015 Update 3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "27550.00",
                  "status": "affected",
                  "version": "14.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-11-09T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-05-29T14:47:57.294Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42277"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1306/"
            }
          ],
          "title": "Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-42277",
        "datePublished": "2021-11-10T00:47:02.000Z",
        "dateReserved": "2021-10-12T00:00:00.000Z",
        "dateUpdated": "2024-08-04T03:30:37.813Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-36952 (GCVE-0-2021-36952)

    Vulnerability from nvd – Published: 2021-09-15 11:23 – Updated: 2024-08-04 01:09
    VLAI
    Title
    Visual Studio Remote Code Execution Vulnerability
    Summary
    Visual Studio Remote Code Execution Vulnerability
    CWE
    • Remote Code Execution
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < 15.9.39 (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < 16.4.26 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.19 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-09-14 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T01:09:07.413Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36952"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1076/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "15.9.39",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.4.26",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.19",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-09-14T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Visual Studio Remote Code Execution Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Remote Code Execution",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T19:37:00.478Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36952"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1076/"
            }
          ],
          "title": "Visual Studio Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-36952",
        "datePublished": "2021-09-15T11:23:30.000Z",
        "dateReserved": "2021-07-19T00:00:00.000Z",
        "dateUpdated": "2024-08-04T01:09:07.413Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-26434 (GCVE-0-2021-26434)

    Vulnerability from nvd – Published: 2021-09-15 11:23 – Updated: 2024-08-03 20:26
    VLAI
    Title
    Visual Studio Elevation of Privilege Vulnerability
    Summary
    Visual Studio Elevation of Privilege Vulnerability
    CWE
    • Elevation of Privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < 15.9.39 (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < 16.4.26 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.19 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.11 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10) Affected: 16.11.0 , < 16.11.3 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-09-14 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T20:26:25.193Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26434"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1077/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "15.9.39",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.4.26",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.19",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.11",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.11.3",
                  "status": "affected",
                  "version": "16.11.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-09-14T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Visual Studio Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T19:37:25.359Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26434"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1077/"
            }
          ],
          "title": "Visual Studio Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-26434",
        "datePublished": "2021-09-15T11:23:00.000Z",
        "dateReserved": "2021-01-29T00:00:00.000Z",
        "dateUpdated": "2024-08-03T20:26:25.193Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-34532 (GCVE-0-2021-34532)

    Vulnerability from nvd – Published: 2021-08-12 18:12 – Updated: 2024-08-04 00:12
    VLAI
    Title
    ASP.NET Core and Visual Studio Information Disclosure Vulnerability
    Summary
    ASP.NET Core and Visual Studio Information Disclosure Vulnerability
    CWE
    • Information Disclosure
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft ASP.NET Core 2.1 Affected: 2.0 , < 2.1.29 (custom)
        cpe:2.3:a:microsoft:asp.net_core:2.1*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft ASP.NET Core 3.1 Affected: 3.0 , < 3.1.18 (custom)
        cpe:2.3:a:microsoft:asp.net_core:3.1:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft ASP.NET Core 5.0 Affected: 5.0 , < 5.0.9 (custom)
        cpe:2.3:a:microsoft:asp.net_core:5.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < 16.4.25 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.18 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.10 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9) Affected: 16.10.0 , < 16.10.5 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Visual Studio 2019 for Mac version 8.10 Affected: 8.1.0 , < 8.10.7 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*
    Create a notification for this product.
    Date Public
    2021-08-10 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T00:12:50.394Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34532"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:asp.net_core:2.1*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "ASP.NET Core 2.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "2.1.29",
                  "status": "affected",
                  "version": "2.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:asp.net_core:3.1:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "ASP.NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "3.1.18",
                  "status": "affected",
                  "version": "3.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:asp.net_core:5.0:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "ASP.NET Core 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "5.0.9",
                  "status": "affected",
                  "version": "5.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.4.25",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.18",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.10",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.10.5",
                  "status": "affected",
                  "version": "16.10.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Visual Studio 2019 for Mac version 8.10",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "8.10.7",
                  "status": "affected",
                  "version": "8.1.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-08-10T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "ASP.NET Core and Visual Studio Information Disclosure Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Information Disclosure",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T19:54:05.650Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34532"
            }
          ],
          "title": "ASP.NET Core and Visual Studio Information Disclosure Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-34532",
        "datePublished": "2021-08-12T18:12:05.000Z",
        "dateReserved": "2021-06-09T00:00:00.000Z",
        "dateUpdated": "2024-08-04T00:12:50.394Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-34485 (GCVE-0-2021-34485)

    Vulnerability from nvd – Published: 2021-08-12 18:11 – Updated: 2024-08-04 00:12
    VLAI
    Title
    .NET Core and Visual Studio Information Disclosure Vulnerability
    Summary
    .NET Core and Visual Studio Information Disclosure Vulnerability
    CWE
    • Information Disclosure
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < 15.9.38 (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < 16.4.25 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.18 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.10 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9) Affected: 16.10.0 , < 16.10.5 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft PowerShell 7.1 Affected: 7.1.0 , < 7.1.4 (custom)
        cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft PowerShell 7.0 Affected: 7.0.0 , < 7.0.7 (custom)
        cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET Core 2.1 Affected: 2.1 , < 2.1.30 (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET Core 3.1 Affected: 3.1 , < 3.1.18 (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET 5.0 Affected: 5.0.0 , < 5.0.9 (custom)
        cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-08-10 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T00:12:50.369Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34485"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "15.9.38",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.4.25",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.18",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.10",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.10.5",
                  "status": "affected",
                  "version": "16.10.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell 7.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "7.1.4",
                  "status": "affected",
                  "version": "7.1.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell 7.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "7.0.7",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 2.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "2.1.30",
                  "status": "affected",
                  "version": "2.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "3.1.18",
                  "status": "affected",
                  "version": "3.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "5.0.9",
                  "status": "affected",
                  "version": "5.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-08-10T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": ".NET Core and Visual Studio Information Disclosure Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Information Disclosure",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T19:54:07.748Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34485"
            }
          ],
          "title": ".NET Core and Visual Studio Information Disclosure Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-34485",
        "datePublished": "2021-08-12T18:11:57.000Z",
        "dateReserved": "2021-06-09T00:00:00.000Z",
        "dateUpdated": "2024-08-04T00:12:50.369Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-26423 (GCVE-0-2021-26423)

    Vulnerability from nvd – Published: 2021-08-12 18:11 – Updated: 2026-05-28 18:48
    VLAI
    Title
    .NET Core and Visual Studio Denial of Service Vulnerability
    Summary
    .NET Core and Visual Studio Denial of Service Vulnerability
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < 15.9.38 (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < 16.4.25 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.18 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.10 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9) Affected: 16.10.0 , < 16.10.5 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Visual Studio 2019 for Mac version 8.10 Affected: 8.1.0 , < 8.10.7 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*
    Create a notification for this product.
    Microsoft .NET Core 2.1 Affected: 2.1 , < 2.1.30 (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET Core 3.1 Affected: 3.1 , < 3.1.18 (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET 5.0 Affected: 5.0.0 , < 5.0.9 (custom)
        cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft PowerShell Core 7.1 Affected: 7.1.0 , < 7.1.4 (custom)
        cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft PowerShell Core 7.0 Affected: 7.0.0 , < 7.0.7 (custom)
        cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-08-10 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T20:26:25.161Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26423"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-26423",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-06-04T13:28:43.832819Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "description": "CWE-noinfo Not enough information",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-28T18:48:05.221Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "15.9.38",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.4.25",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.18",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.10",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.10.5",
                  "status": "affected",
                  "version": "16.10.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Visual Studio 2019 for Mac version 8.10",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "8.10.7",
                  "status": "affected",
                  "version": "8.1.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 2.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "2.1.30",
                  "status": "affected",
                  "version": "2.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "3.1.18",
                  "status": "affected",
                  "version": "3.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "5.0.9",
                  "status": "affected",
                  "version": "5.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell Core 7.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "7.1.4",
                  "status": "affected",
                  "version": "7.1.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell Core 7.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "7.0.7",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-08-10T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": ".NET Core and Visual Studio Denial of Service Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Denial of Service",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T19:53:54.266Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26423"
            }
          ],
          "title": ".NET Core and Visual Studio Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-26423",
        "datePublished": "2021-08-12T18:11:31.000Z",
        "dateReserved": "2021-01-29T00:00:00.000Z",
        "dateUpdated": "2026-05-28T18:48:05.221Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2021-31957 (GCVE-0-2021-31957)

    Vulnerability from nvd – Published: 2021-06-08 22:46 – Updated: 2024-08-03 23:10
    VLAI
    Title
    ASP.NET Core Denial of Service Vulnerability
    Summary
    ASP.NET Core Denial of Service Vulnerability
    CWE
    • Denial of Service
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < 16.4.23 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.16 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.7 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9) Affected: 16.10.0 , < 16.10.1 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Visual Studio 2019 for Mac version 8.10 Affected: 8.1.0 , < 8.10.1 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*
    Create a notification for this product.
    Microsoft .NET Core 3.1 Affected: 3.1 , < 3.1.16 (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET 5.0 Affected: 5.0.0 , < 5.0.7 (custom)
        cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-06-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T23:10:31.331Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31957"
              },
              {
                "name": "FEDORA-2021-4b3fc547fe",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PMHWHRRYDHKM6BIINW5V7OCSW4SDWB4W/"
              },
              {
                "name": "FEDORA-2021-cb4f3ab817",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4PRVVLXXQEF4SEJOBV3VRJHGX7YHY2CG/"
              },
              {
                "name": "FEDORA-2021-1e0e04958d",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VMAO4NG2OQ4PCXUQWMNSCMYWLIJJY6UY/"
              },
              {
                "name": "FEDORA-2021-e9c84e6d26",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CVCDYIP4A6DDRT7G6P3ZW6PKNK2DNWJ2/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.4.23",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.16",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.7",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.10.1",
                  "status": "affected",
                  "version": "16.10.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Visual Studio 2019 for Mac version 8.10",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "8.10.1",
                  "status": "affected",
                  "version": "8.1.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "3.1.16",
                  "status": "affected",
                  "version": "3.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "5.0.7",
                  "status": "affected",
                  "version": "5.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-06-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "ASP.NET Core Denial of Service Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 5.9,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Denial of Service",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-05-29T14:55:32.372Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31957"
            },
            {
              "name": "FEDORA-2021-4b3fc547fe",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PMHWHRRYDHKM6BIINW5V7OCSW4SDWB4W/"
            },
            {
              "name": "FEDORA-2021-cb4f3ab817",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4PRVVLXXQEF4SEJOBV3VRJHGX7YHY2CG/"
            },
            {
              "name": "FEDORA-2021-1e0e04958d",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VMAO4NG2OQ4PCXUQWMNSCMYWLIJJY6UY/"
            },
            {
              "name": "FEDORA-2021-e9c84e6d26",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CVCDYIP4A6DDRT7G6P3ZW6PKNK2DNWJ2/"
            }
          ],
          "title": "ASP.NET Core Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-31957",
        "datePublished": "2021-06-08T22:46:26.000Z",
        "dateReserved": "2021-04-30T00:00:00.000Z",
        "dateUpdated": "2024-08-03T23:10:31.331Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-31204 (GCVE-0-2021-31204)

    Vulnerability from nvd – Published: 2021-05-11 19:11 – Updated: 2024-08-03 22:55
    VLAI
    Title
    .NET and Visual Studio Elevation of Privilege Vulnerability
    Summary
    .NET and Visual Studio Elevation of Privilege Vulnerability
    CWE
    • Elevation of Privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft .NET Core 3.1 Affected: 3.1 , < 3.1.15-servicing.21214.3 (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET 5.0 Affected: 5.0.0 , < 5.0.6-servicing.21220.11 (custom)
        cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Visual Studio 2019 for Mac version 8.9 Affected: 8.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*
    Create a notification for this product.
    Date Public
    2021-05-11 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T22:55:53.545Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31204"
              },
              {
                "name": "FEDORA-2021-a3c205f5b2",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FVMWZPF4FR6JPFSNAIDIUDULHZJBVCW6/"
              },
              {
                "name": "FEDORA-2021-13e3bd248f",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6M7KL3KTHJVQNRA3CWFUTESQJARQEHSZ/"
              },
              {
                "name": "FEDORA-2021-721731dc86",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4F3VM3RMPE7PNNLLI3BPCSAXITQZCFCA/"
              },
              {
                "name": "FEDORA-2021-c06b64b5ee",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZWF25Z3CZ6LYCOHZ7FPSFAQ426JUBUZ4/"
              },
              {
                "name": "FEDORA-2021-f25eb9e302",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UV4ITB3SUDGR23G7XALUVKFJMZERFUKF/"
              },
              {
                "name": "FEDORA-2021-d551431950",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LFXJPQUYUITJMV75YN3XIGE3KKN5GOCU/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "3.1.15-servicing.21214.3",
                  "status": "affected",
                  "version": "3.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "5.0.6-servicing.21220.11",
                  "status": "affected",
                  "version": "5.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Visual Studio 2019 for Mac version 8.9",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "8.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-05-11T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": ".NET and Visual Studio Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.3,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T23:57:03.970Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31204"
            },
            {
              "name": "FEDORA-2021-a3c205f5b2",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FVMWZPF4FR6JPFSNAIDIUDULHZJBVCW6/"
            },
            {
              "name": "FEDORA-2021-13e3bd248f",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6M7KL3KTHJVQNRA3CWFUTESQJARQEHSZ/"
            },
            {
              "name": "FEDORA-2021-721731dc86",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4F3VM3RMPE7PNNLLI3BPCSAXITQZCFCA/"
            },
            {
              "name": "FEDORA-2021-c06b64b5ee",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZWF25Z3CZ6LYCOHZ7FPSFAQ426JUBUZ4/"
            },
            {
              "name": "FEDORA-2021-f25eb9e302",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UV4ITB3SUDGR23G7XALUVKFJMZERFUKF/"
            },
            {
              "name": "FEDORA-2021-d551431950",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LFXJPQUYUITJMV75YN3XIGE3KKN5GOCU/"
            }
          ],
          "title": ".NET and Visual Studio Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-31204",
        "datePublished": "2021-05-11T19:11:40.000Z",
        "dateReserved": "2021-04-14T00:00:00.000Z",
        "dateUpdated": "2024-08-03T22:55:53.545Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-27068 (GCVE-0-2021-27068)

    Vulnerability from nvd – Published: 2021-05-11 19:11 – Updated: 2024-11-19 14:56
    VLAI
    Title
    Visual Studio Remote Code Execution Vulnerability
    Summary
    Visual Studio Remote Code Execution Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Remote Code Execution
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-05-11 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T20:40:47.252Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27068"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-27068",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-08T19:14:30.372062Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-19T14:56:33.373Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-05-11T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Visual Studio Remote Code Execution Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Remote Code Execution",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T23:56:45.751Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27068"
            }
          ],
          "title": "Visual Studio Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-27068",
        "datePublished": "2021-05-11T19:11:13.000Z",
        "dateReserved": "2021-02-10T00:00:00.000Z",
        "dateUpdated": "2024-11-19T14:56:33.373Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-24513 (GCVE-0-2022-24513)

    Vulnerability from cvelistv5 – Published: 2022-04-15 19:03 – Updated: 2025-01-02 18:51
    VLAI
    Title
    Visual Studio Elevation of Privilege Vulnerability
    Summary
    Visual Studio Elevation of Privilege Vulnerability
    CWE
    • Elevation of Privilege
    Assigner
    References
    Date Public
    2022-04-12 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T04:13:56.028Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "Visual Studio Elevation of Privilege Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24513"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "15.9.49",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.27",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.23",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Visual Studio 2019 for Mac version 8.10",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "8.10.24",
                  "status": "affected",
                  "version": "8.1.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.11.16",
                  "status": "affected",
                  "version": "16.11.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2022 version 17.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "17.0.12",
                  "status": "affected",
                  "version": "17.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2022 version 17.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "17.1.7",
                  "status": "affected",
                  "version": "17.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Visual Studio 2022 for Mac version 17.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "17.0.3",
                  "status": "affected",
                  "version": "17.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "15.9.49",
                      "versionStartIncluding": "15.9.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "16.7.27",
                      "versionStartIncluding": "16.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "16.9.23",
                      "versionStartIncluding": "15.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:macos:*:*",
                      "versionEndExcluding": "8.10.24",
                      "versionStartIncluding": "8.1.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "16.11.16",
                      "versionStartIncluding": "16.11.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "17.0.12",
                      "versionStartIncluding": "17.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "17.1.7",
                      "versionStartIncluding": "17.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "17.0.3",
                      "versionStartIncluding": "17.0.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2022-04-12T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Visual Studio Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-01-02T18:51:46.747Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Visual Studio Elevation of Privilege Vulnerability",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24513"
            }
          ],
          "title": "Visual Studio Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2022-24513",
        "datePublished": "2022-04-15T19:03:40.000Z",
        "dateReserved": "2022-02-05T00:00:00.000Z",
        "dateUpdated": "2025-01-02T18:51:46.747Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-24512 (GCVE-0-2022-24512)

    Vulnerability from cvelistv5 – Published: 2022-03-09 17:08 – Updated: 2026-05-27 13:58
    VLAI
    Title
    .NET and Visual Studio Remote Code Execution Vulnerability
    Summary
    .NET and Visual Studio Remote Code Execution Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • Remote Code Execution
    • CWE-94 - Improper Control of Generation of Code ('Code Injection')
    Assigner
    References
    Date Public
    2022-03-08 08:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T04:13:56.019Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": ".NET and Visual Studio Remote Code Execution Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24512"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-24512",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-05-20T16:45:59.698908Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-94",
                    "description": "CWE-94 Improper Control of Generation of Code (\u0027Code Injection\u0027)",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-27T13:58:25.036Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.26",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.18",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.11.11",
                  "status": "affected",
                  "version": "16.11.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2022 version 17.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "17.0.7",
                  "status": "affected",
                  "version": "17.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "5.0.15",
                  "status": "affected",
                  "version": "5.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 6.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.0.3",
                  "status": "affected",
                  "version": "6.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "3.1.23",
                  "status": "affected",
                  "version": "3.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell 7.2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "7.2.2",
                  "status": "affected",
                  "version": "7.2.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell 7.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "7.0.9",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell 7.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "7.1.6",
                  "status": "affected",
                  "version": "7.1.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "16.7.26",
                      "versionStartIncluding": "16.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "16.9.18",
                      "versionStartIncluding": "15.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "16.11.11",
                      "versionStartIncluding": "16.11.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "17.0.7",
                      "versionStartIncluding": "17.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "5.0.15",
                      "versionStartIncluding": "5.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "6.0.3",
                      "versionStartIncluding": "6.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "3.1.23",
                      "versionStartIncluding": "3.1",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:powershell:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "7.2.2",
                      "versionStartIncluding": "7.2.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "7.0.9",
                      "versionStartIncluding": "7.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "7.1.6",
                      "versionStartIncluding": "7.1.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2022-03-08T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": ".NET and Visual Studio Remote Code Execution Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Remote Code Execution",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-07-08T15:31:32.909Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": ".NET and Visual Studio Remote Code Execution Vulnerability",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24512"
            }
          ],
          "title": ".NET and Visual Studio Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2022-24512",
        "datePublished": "2022-03-09T17:08:15.000Z",
        "dateReserved": "2022-02-05T00:00:00.000Z",
        "dateUpdated": "2026-05-27T13:58:25.036Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2022-24464 (GCVE-0-2022-24464)

    Vulnerability from cvelistv5 – Published: 2022-03-09 17:07 – Updated: 2026-05-27 14:00
    VLAI
    Title
    .NET and Visual Studio Denial of Service Vulnerability
    Summary
    .NET and Visual Studio Denial of Service Vulnerability
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • Denial of Service
    • CWE-400 - Uncontrolled Resource Consumption
    Assigner
    References
    Date Public
    2022-03-08 08:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T04:13:55.503Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": ".NET and Visual Studio Denial of Service Vulnerability",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24464"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-24464",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-27T14:00:22.471008Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-400",
                    "description": "CWE-400 Uncontrolled Resource Consumption",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-27T14:00:53.670Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 6.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.0.3",
                  "status": "affected",
                  "version": "6.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "5.0.15",
                  "status": "affected",
                  "version": "5.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "3.1.23",
                  "status": "affected",
                  "version": "3.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.26",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.18",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.11.11",
                  "status": "affected",
                  "version": "16.11.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2022 version 17.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "17.0.7",
                  "status": "affected",
                  "version": "17.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "6.0.3",
                      "versionStartIncluding": "6.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "5.0.15",
                      "versionStartIncluding": "5.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "3.1.23",
                      "versionStartIncluding": "3.1",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "16.7.26",
                      "versionStartIncluding": "16.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "16.9.18",
                      "versionStartIncluding": "15.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "16.11.11",
                      "versionStartIncluding": "16.11.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "17.0.7",
                      "versionStartIncluding": "17.0.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2022-03-08T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": ".NET and Visual Studio Denial of Service Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Denial of Service",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-07-08T15:31:40.520Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": ".NET and Visual Studio Denial of Service Vulnerability",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24464"
            }
          ],
          "title": ".NET and Visual Studio Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2022-24464",
        "datePublished": "2022-03-09T17:07:46.000Z",
        "dateReserved": "2022-02-05T00:00:00.000Z",
        "dateUpdated": "2026-05-27T14:00:53.670Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2022-21871 (GCVE-0-2022-21871)

    Vulnerability from cvelistv5 – Published: 2022-01-11 20:22 – Updated: 2025-01-02 18:22
    VLAI
    Title
    Microsoft Diagnostics Hub Standard Collector Runtime Elevation of Privilege Vulnerability
    Summary
    Microsoft Diagnostics Hub Standard Collector Runtime Elevation of Privilege Vulnerability
    CWE
    • Elevation of Privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1809 Affected: 10.0.17763.0 , < 10.0.17763.2452 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1809 Affected: 10.0.0 , < 10.0.17763.2452 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.17763.0 , < 10.0.17763.2452 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.17763.0 , < 10.0.17763.2452 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 Affected: 10.0.0 , < 10.0.18363.2037 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H1 Affected: 10.0.0 , < 10.0.19043.1466 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2022 Affected: 10.0.20348.0 , < 10.0.20348.469 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 20H2 Affected: 10.0.0 , < 10.0.19042.1466 (custom)
    Create a notification for this product.
    Microsoft Windows Server version 20H2 Affected: 10.0.0 , < 10.0.19042.1466 (custom)
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.0 , < 10.0.22000.434 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 21H2 Affected: 10.0.19043.0 , < 10.0.19043.1466 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1507 Affected: 10.0.10240.0 , < 10.0.10240.19177 (custom)
    Create a notification for this product.
    Microsoft Windows 10 Version 1607 Affected: 10.0.14393.0 , < 10.0.14393.4886 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 Affected: 10.0.14393.0 , < 10.0.14393.4886 (custom)
    Create a notification for this product.
    Microsoft Windows Server 2016 (Server Core installation) Affected: 10.0.14393.0 , < 10.0.14393.4886 (custom)
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < 15.9.44 (custom)
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.25 (custom)
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.17 (custom)
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2015 Update 3 Affected: 14.0.0 , < 27551.00 (custom)
    Create a notification for this product.
    Date Public
    2022-01-11 08:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T02:53:36.400Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-21871"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.2452",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.2452",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.2452",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.2452",
                  "status": "affected",
                  "version": "10.0.17763.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 1909",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.18363.2037",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems",
                "ARM64-based Systems",
                "32-bit Systems"
              ],
              "product": "Windows 10 Version 21H1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19043.1466",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.20348.469",
                  "status": "affected",
                  "version": "10.0.20348.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 20H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19042.1466",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server version 20H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19042.1466",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.434",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19043.1466",
                  "status": "affected",
                  "version": "10.0.19043.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1507",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.10240.19177",
                  "status": "affected",
                  "version": "10.0.10240.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1607",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.4886",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.4886",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.4886",
                  "status": "affected",
                  "version": "10.0.14393.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "15.9.44",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.25",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.17",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2015 Update 3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "27551.00",
                  "status": "affected",
                  "version": "14.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.17763.2452",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:arm64:*",
                      "versionEndExcluding": "10.0.17763.2452",
                      "versionStartIncluding": "10.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.2452",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.17763.2452",
                      "versionStartIncluding": "10.0.17763.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1909:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.18363.2037",
                      "versionStartIncluding": "10.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H1:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.19043.1466",
                      "versionStartIncluding": "10.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2022:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.20348.469",
                      "versionStartIncluding": "10.0.20348.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_20H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19042.1466",
                      "versionStartIncluding": "10.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_20H2:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.19042.1466",
                      "versionStartIncluding": "10.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_11_21H2:*:*:*:*:*:*:x64:*",
                      "versionEndExcluding": "10.0.22000.434",
                      "versionStartIncluding": "10.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_21H2:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.19043.1466",
                      "versionStartIncluding": "10.0.19043.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1507:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.10240.19177",
                      "versionStartIncluding": "10.0.10240.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*",
                      "versionEndExcluding": "10.0.14393.4886",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.4886",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:o:microsoft:windows_server_2016:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "10.0.14393.4886",
                      "versionStartIncluding": "10.0.14393.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "15.9.44",
                      "versionStartIncluding": "15.9.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "16.7.25",
                      "versionStartIncluding": "16.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*",
                      "versionEndExcluding": "16.9.17",
                      "versionStartIncluding": "15.0.0",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:microsoft:visual_studio:*:update3:*:*:*:*:*:*",
                      "versionEndExcluding": "27551.00",
                      "versionStartIncluding": "14.0.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ]
            }
          ],
          "datePublic": "2022-01-11T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Microsoft Diagnostics Hub Standard Collector Runtime Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-01-02T18:22:22.488Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "name": "Microsoft Diagnostics Hub Standard Collector Runtime Elevation of Privilege Vulnerability",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21871"
            }
          ],
          "title": "Microsoft Diagnostics Hub Standard Collector Runtime Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2022-21871",
        "datePublished": "2022-01-11T20:22:40.000Z",
        "dateReserved": "2021-12-14T00:00:00.000Z",
        "dateUpdated": "2025-01-02T18:22:22.488Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-43877 (GCVE-0-2021-43877)

    Vulnerability from cvelistv5 – Published: 2021-12-15 14:15 – Updated: 2024-08-04 04:10
    VLAI
    Title
    ASP.NET Core and Visual Studio Elevation of Privilege Vulnerability
    Summary
    ASP.NET Core and Visual Studio Elevation of Privilege Vulnerability
    CWE
    • Elevation of Privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.23 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.15 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10) Affected: 16.11.0 , < 16.11.8 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2022 version 17.0 Affected: 17.0.0 , < 17.0.3 (custom)
        cpe:2.3:a:microsoft:visual_studio_2022:17.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft ASP.NET Core 3.1 Affected: 3.0 , < 3.1.22 (custom)
        cpe:2.3:a:microsoft:asp.net_core:3.1:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft ASP.NET Core 5.0 Affected: 5.0 , < 5.0.13 (custom)
        cpe:2.3:a:microsoft:asp.net_core:5.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft ASP.NET Core 6.0 Affected: 6.0 , < 6.0.101 (custom)
        cpe:2.3:a:microsoft:asp.net_core:6.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2022 version 17.1 Affected: 17.0.0 , < 17.1.4 (custom)
        cpe:2.3:a:microsoft:visual_studio_2022:17.1:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-12-14 08:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T04:10:17.113Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43877"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.23",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.15",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.11.8",
                  "status": "affected",
                  "version": "16.11.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2022:17.0:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2022 version 17.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "17.0.3",
                  "status": "affected",
                  "version": "17.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:asp.net_core:3.1:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "ASP.NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "3.1.22",
                  "status": "affected",
                  "version": "3.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:asp.net_core:5.0:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "ASP.NET Core 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "5.0.13",
                  "status": "affected",
                  "version": "5.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:asp.net_core:6.0:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "ASP.NET Core 6.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "6.0.101",
                  "status": "affected",
                  "version": "6.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2022:17.1:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2022 version 17.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "17.1.4",
                  "status": "affected",
                  "version": "17.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-12-14T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "ASP.NET Core and Visual Studio Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-05-29T14:44:33.540Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43877"
            }
          ],
          "title": "ASP.NET Core and Visual Studio Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-43877",
        "datePublished": "2021-12-15T14:15:31.000Z",
        "dateReserved": "2021-11-16T00:00:00.000Z",
        "dateUpdated": "2024-08-04T04:10:17.113Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-42319 (GCVE-0-2021-42319)

    Vulnerability from cvelistv5 – Published: 2021-11-10 00:47 – Updated: 2024-08-04 03:30
    VLAI
    Title
    Visual Studio Elevation of Privilege Vulnerability
    Summary
    Visual Studio Elevation of Privilege Vulnerability
    CWE
    • Elevation of Privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < 15.9.41 (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.21 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.13 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10) Affected: 16.11.0 , < 16.11.6 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-11-09 08:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T03:30:38.244Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42319"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "15.9.41",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.21",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.13",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.11.6",
                  "status": "affected",
                  "version": "16.11.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-11-09T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Visual Studio Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 4.7,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-05-29T14:47:45.942Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42319"
            }
          ],
          "title": "Visual Studio Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-42319",
        "datePublished": "2021-11-10T00:47:41.000Z",
        "dateReserved": "2021-10-12T00:00:00.000Z",
        "dateUpdated": "2024-08-04T03:30:38.244Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-42277 (GCVE-0-2021-42277)

    Vulnerability from cvelistv5 – Published: 2021-11-10 00:47 – Updated: 2024-08-04 03:30
    VLAI
    Title
    Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability
    Summary
    Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability
    CWE
    • Elevation of Privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Windows 10 Version 1809 Affected: 10.0.0 , < 10.0.17763.2300 (custom)
        cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.2300:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.2300:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.2300:*:*:*:*:*:arm64:*
    Create a notification for this product.
    Microsoft Windows Server 2019 Affected: 10.0.0 , < 10.0.17763.2300 (custom)
        cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.2300:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows Server 2019 (Server Core installation) Affected: 10.0.0 , < 10.0.17763.2300 (custom)
        cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.2300:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows 10 Version 1909 Affected: 10.0.0 , < 10.0.18363.1916 (custom)
        cpe:2.3:o:microsoft:windows_10_1909:10.0.18363.1916:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_1909:10.0.18363.1916:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_1809:10.0.18363.1916:*:*:*:*:*:x64:*
    Create a notification for this product.
    Microsoft Windows 10 Version 21H1 Affected: 10.0.0 , < 10.0.19043.1348 (custom)
        cpe:2.3:o:microsoft:windows_10_21H1:10.0.19043.1348:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_10_21H1:10.0.19043.1348:*:*:*:*:*:arm64:*
        cpe:2.3:o:microsoft:windows_10_21H1:10.0.19043.1348:*:*:*:*:*:x86:*
    Create a notification for this product.
    Microsoft Windows Server 2022 Affected: 10.0.0 , < 10.0.20348.350 (custom)
        cpe:2.3:o:microsoft:windows_server_2022:10.0.20348.350:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows 10 Version 2004 Affected: 10.0.0 , < 10.0.19041.1348 (custom)
        cpe:2.3:o:microsoft:windows_10_1809:10.0.19041.1348:*:*:*:*:*:x64:*
    Create a notification for this product.
    Microsoft Windows Server version 2004 Affected: 10.0.0 , < 10.0.19041.1348 (custom)
        cpe:2.3:o:microsoft:windows_server_2004:10.0.19041.1348:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows 10 Version 20H2 Affected: 10.0.0 , < 10.0.19042.1348 (custom)
        cpe:2.3:o:microsoft:windows_10_20H2:10.0.19042.1348:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_20H2:10.0.19042.1348:*:*:*:*:*:arm64:*
    Create a notification for this product.
    Microsoft Windows Server version 20H2 Affected: 10.0.0 , < 10.0.19041.1348 (custom)
        cpe:2.3:o:microsoft:windows_server_20H2:10.0.19041.1348:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows 11 version 21H2 Affected: 10.0.0 , < 10.0.22000.318 (custom)
        cpe:2.3:o:microsoft:windows_11_21H2:10.0.22000.318:*:*:*:*:*:x64:*
        cpe:2.3:o:microsoft:windows_11_21H2:10.0.22000.318:*:*:*:*:*:arm64:*
    Create a notification for this product.
    Microsoft Windows 10 Version 1507 Affected: 10.0.0 , < 10.0.10240.19119 (custom)
        cpe:2.3:o:microsoft:windows_10_1507:10.0.10240.19119:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_1507:10.0.10240.19119:*:*:*:*:*:x64:*
    Create a notification for this product.
    Microsoft Windows 10 Version 1607 Affected: 10.0.0 , < 10.0.14393.4770 (custom)
        cpe:2.3:o:microsoft:windows_10_1607:10.0.14393.4770:*:*:*:*:*:x86:*
        cpe:2.3:o:microsoft:windows_10_1607:10.0.14393.4770:*:*:*:*:*:x64:*
    Create a notification for this product.
    Microsoft Windows Server 2016 Affected: 10.0.0 , < 10.0.14393.4770 (custom)
        cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4770:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Windows Server 2016 (Server Core installation) Affected: 10.0.0 , < 10.0.14393.4770 (custom)
        cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4770:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < 15.9.41 (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.21 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.13 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10) Affected: 16.11.0 , < 16.11.6 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2015 Update 3 Affected: 14.0.0 , < 27550.00 (custom)
        cpe:2.3:a:microsoft:visual_studio:2015:update3:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-11-09 08:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T03:30:37.813Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42277"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1306/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.2300:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.2300:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1809:10.0.17763.2300:*:*:*:*:*:arm64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 1809",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.2300",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.2300:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.2300",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2019:10.0.17763.2300:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2019 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.17763.2300",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1909:10.0.18363.1916:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_1909:10.0.18363.1916:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_1809:10.0.18363.1916:*:*:*:*:*:x64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 1909",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.18363.1916",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_21H1:10.0.19043.1348:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_10_21H1:10.0.19043.1348:*:*:*:*:*:arm64:*",
                "cpe:2.3:o:microsoft:windows_10_21H1:10.0.19043.1348:*:*:*:*:*:x86:*"
              ],
              "platforms": [
                "x64-based Systems",
                "ARM64-based Systems",
                "32-bit Systems"
              ],
              "product": "Windows 10 Version 21H1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19043.1348",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2022:10.0.20348.350:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2022",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.20348.350",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1809:10.0.19041.1348:*:*:*:*:*:x64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 2004",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19041.1348",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2004:10.0.19041.1348:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server version 2004",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19041.1348",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_20H2:10.0.19042.1348:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_20H2:10.0.19042.1348:*:*:*:*:*:arm64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 10 Version 20H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19042.1348",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_20H2:10.0.19041.1348:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server version 20H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.19041.1348",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_11_21H2:10.0.22000.318:*:*:*:*:*:x64:*",
                "cpe:2.3:o:microsoft:windows_11_21H2:10.0.22000.318:*:*:*:*:*:arm64:*"
              ],
              "platforms": [
                "x64-based Systems",
                "ARM64-based Systems"
              ],
              "product": "Windows 11 version 21H2",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.22000.318",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1507:10.0.10240.19119:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_1507:10.0.10240.19119:*:*:*:*:*:x64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1507",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.10240.19119",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_10_1607:10.0.14393.4770:*:*:*:*:*:x86:*",
                "cpe:2.3:o:microsoft:windows_10_1607:10.0.14393.4770:*:*:*:*:*:x64:*"
              ],
              "platforms": [
                "32-bit Systems",
                "x64-based Systems"
              ],
              "product": "Windows 10 Version 1607",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.4770",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4770:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.4770",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:o:microsoft:windows_server_2016:10.0.14393.4770:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "x64-based Systems"
              ],
              "product": "Windows Server 2016 (Server Core installation)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "10.0.14393.4770",
                  "status": "affected",
                  "version": "10.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "15.9.41",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.21",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.13",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.11.6",
                  "status": "affected",
                  "version": "16.11.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio:2015:update3:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2015 Update 3",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "27550.00",
                  "status": "affected",
                  "version": "14.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-11-09T08:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-05-29T14:47:57.294Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-42277"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1306/"
            }
          ],
          "title": "Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-42277",
        "datePublished": "2021-11-10T00:47:02.000Z",
        "dateReserved": "2021-10-12T00:00:00.000Z",
        "dateUpdated": "2024-08-04T03:30:37.813Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-36952 (GCVE-0-2021-36952)

    Vulnerability from cvelistv5 – Published: 2021-09-15 11:23 – Updated: 2024-08-04 01:09
    VLAI
    Title
    Visual Studio Remote Code Execution Vulnerability
    Summary
    Visual Studio Remote Code Execution Vulnerability
    CWE
    • Remote Code Execution
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < 15.9.39 (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < 16.4.26 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.19 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-09-14 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T01:09:07.413Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36952"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1076/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "15.9.39",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.4.26",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.19",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-09-14T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Visual Studio Remote Code Execution Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Remote Code Execution",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T19:37:00.478Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-36952"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1076/"
            }
          ],
          "title": "Visual Studio Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-36952",
        "datePublished": "2021-09-15T11:23:30.000Z",
        "dateReserved": "2021-07-19T00:00:00.000Z",
        "dateUpdated": "2024-08-04T01:09:07.413Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-26434 (GCVE-0-2021-26434)

    Vulnerability from cvelistv5 – Published: 2021-09-15 11:23 – Updated: 2024-08-03 20:26
    VLAI
    Title
    Visual Studio Elevation of Privilege Vulnerability
    Summary
    Visual Studio Elevation of Privilege Vulnerability
    CWE
    • Elevation of Privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < 15.9.39 (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < 16.4.26 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.19 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.11 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10) Affected: 16.11.0 , < 16.11.3 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-09-14 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T20:26:25.193Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26434"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1077/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "15.9.39",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.4.26",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.19",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.11",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.11.3",
                  "status": "affected",
                  "version": "16.11.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-09-14T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Visual Studio Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T19:37:25.359Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26434"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1077/"
            }
          ],
          "title": "Visual Studio Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-26434",
        "datePublished": "2021-09-15T11:23:00.000Z",
        "dateReserved": "2021-01-29T00:00:00.000Z",
        "dateUpdated": "2024-08-03T20:26:25.193Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-34532 (GCVE-0-2021-34532)

    Vulnerability from cvelistv5 – Published: 2021-08-12 18:12 – Updated: 2024-08-04 00:12
    VLAI
    Title
    ASP.NET Core and Visual Studio Information Disclosure Vulnerability
    Summary
    ASP.NET Core and Visual Studio Information Disclosure Vulnerability
    CWE
    • Information Disclosure
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft ASP.NET Core 2.1 Affected: 2.0 , < 2.1.29 (custom)
        cpe:2.3:a:microsoft:asp.net_core:2.1*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft ASP.NET Core 3.1 Affected: 3.0 , < 3.1.18 (custom)
        cpe:2.3:a:microsoft:asp.net_core:3.1:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft ASP.NET Core 5.0 Affected: 5.0 , < 5.0.9 (custom)
        cpe:2.3:a:microsoft:asp.net_core:5.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < 16.4.25 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.18 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.10 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9) Affected: 16.10.0 , < 16.10.5 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Visual Studio 2019 for Mac version 8.10 Affected: 8.1.0 , < 8.10.7 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*
    Create a notification for this product.
    Date Public
    2021-08-10 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T00:12:50.394Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34532"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:asp.net_core:2.1*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "ASP.NET Core 2.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "2.1.29",
                  "status": "affected",
                  "version": "2.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:asp.net_core:3.1:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "ASP.NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "3.1.18",
                  "status": "affected",
                  "version": "3.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:asp.net_core:5.0:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "ASP.NET Core 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "5.0.9",
                  "status": "affected",
                  "version": "5.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.4.25",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.18",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.10",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.10.5",
                  "status": "affected",
                  "version": "16.10.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Visual Studio 2019 for Mac version 8.10",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "8.10.7",
                  "status": "affected",
                  "version": "8.1.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-08-10T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "ASP.NET Core and Visual Studio Information Disclosure Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Information Disclosure",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T19:54:05.650Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34532"
            }
          ],
          "title": "ASP.NET Core and Visual Studio Information Disclosure Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-34532",
        "datePublished": "2021-08-12T18:12:05.000Z",
        "dateReserved": "2021-06-09T00:00:00.000Z",
        "dateUpdated": "2024-08-04T00:12:50.394Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-34485 (GCVE-0-2021-34485)

    Vulnerability from cvelistv5 – Published: 2021-08-12 18:11 – Updated: 2024-08-04 00:12
    VLAI
    Title
    .NET Core and Visual Studio Information Disclosure Vulnerability
    Summary
    .NET Core and Visual Studio Information Disclosure Vulnerability
    CWE
    • Information Disclosure
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < 15.9.38 (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < 16.4.25 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.18 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.10 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9) Affected: 16.10.0 , < 16.10.5 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft PowerShell 7.1 Affected: 7.1.0 , < 7.1.4 (custom)
        cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft PowerShell 7.0 Affected: 7.0.0 , < 7.0.7 (custom)
        cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET Core 2.1 Affected: 2.1 , < 2.1.30 (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET Core 3.1 Affected: 3.1 , < 3.1.18 (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET 5.0 Affected: 5.0.0 , < 5.0.9 (custom)
        cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-08-10 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T00:12:50.369Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34485"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "15.9.38",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.4.25",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.18",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.10",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.10.5",
                  "status": "affected",
                  "version": "16.10.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell 7.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "7.1.4",
                  "status": "affected",
                  "version": "7.1.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell 7.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "7.0.7",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 2.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "2.1.30",
                  "status": "affected",
                  "version": "2.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "3.1.18",
                  "status": "affected",
                  "version": "3.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "5.0.9",
                  "status": "affected",
                  "version": "5.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-08-10T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": ".NET Core and Visual Studio Information Disclosure Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Information Disclosure",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T19:54:07.748Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34485"
            }
          ],
          "title": ".NET Core and Visual Studio Information Disclosure Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-34485",
        "datePublished": "2021-08-12T18:11:57.000Z",
        "dateReserved": "2021-06-09T00:00:00.000Z",
        "dateUpdated": "2024-08-04T00:12:50.369Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-26423 (GCVE-0-2021-26423)

    Vulnerability from cvelistv5 – Published: 2021-08-12 18:11 – Updated: 2026-05-28 18:48
    VLAI
    Title
    .NET Core and Visual Studio Denial of Service Vulnerability
    Summary
    .NET Core and Visual Studio Denial of Service Vulnerability
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) Affected: 15.9.0 , < 15.9.38 (custom)
        cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < 16.4.25 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.18 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.10 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9) Affected: 16.10.0 , < 16.10.5 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Visual Studio 2019 for Mac version 8.10 Affected: 8.1.0 , < 8.10.7 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*
    Create a notification for this product.
    Microsoft .NET Core 2.1 Affected: 2.1 , < 2.1.30 (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET Core 3.1 Affected: 3.1 , < 3.1.18 (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET 5.0 Affected: 5.0.0 , < 5.0.9 (custom)
        cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft PowerShell Core 7.1 Affected: 7.1.0 , < 7.1.4 (custom)
        cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft PowerShell Core 7.0 Affected: 7.0.0 , < 7.0.7 (custom)
        cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-08-10 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T20:26:25.161Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26423"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-26423",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-06-04T13:28:43.832819Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "description": "CWE-noinfo Not enough information",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-28T18:48:05.221Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "15.9.38",
                  "status": "affected",
                  "version": "15.9.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.4.25",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.18",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.10",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.10.5",
                  "status": "affected",
                  "version": "16.10.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Visual Studio 2019 for Mac version 8.10",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "8.10.7",
                  "status": "affected",
                  "version": "8.1.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 2.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "2.1.30",
                  "status": "affected",
                  "version": "2.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "3.1.18",
                  "status": "affected",
                  "version": "3.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "5.0.9",
                  "status": "affected",
                  "version": "5.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell Core 7.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "7.1.4",
                  "status": "affected",
                  "version": "7.1.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:powershell_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "PowerShell Core 7.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "7.0.7",
                  "status": "affected",
                  "version": "7.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-08-10T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": ".NET Core and Visual Studio Denial of Service Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Denial of Service",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T19:53:54.266Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-26423"
            }
          ],
          "title": ".NET Core and Visual Studio Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-26423",
        "datePublished": "2021-08-12T18:11:31.000Z",
        "dateReserved": "2021-01-29T00:00:00.000Z",
        "dateUpdated": "2026-05-28T18:48:05.221Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2021-31957 (GCVE-0-2021-31957)

    Vulnerability from cvelistv5 – Published: 2021-06-08 22:46 – Updated: 2024-08-03 23:10
    VLAI
    Title
    ASP.NET Core Denial of Service Vulnerability
    Summary
    ASP.NET Core Denial of Service Vulnerability
    CWE
    • Denial of Service
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < 16.4.23 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < 16.7.16 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < 16.9.7 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9) Affected: 16.10.0 , < 16.10.1 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Visual Studio 2019 for Mac version 8.10 Affected: 8.1.0 , < 8.10.1 (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*
    Create a notification for this product.
    Microsoft .NET Core 3.1 Affected: 3.1 , < 3.1.16 (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET 5.0 Affected: 5.0.0 , < 5.0.7 (custom)
        cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-06-08 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T23:10:31.331Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31957"
              },
              {
                "name": "FEDORA-2021-4b3fc547fe",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PMHWHRRYDHKM6BIINW5V7OCSW4SDWB4W/"
              },
              {
                "name": "FEDORA-2021-cb4f3ab817",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4PRVVLXXQEF4SEJOBV3VRJHGX7YHY2CG/"
              },
              {
                "name": "FEDORA-2021-1e0e04958d",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VMAO4NG2OQ4PCXUQWMNSCMYWLIJJY6UY/"
              },
              {
                "name": "FEDORA-2021-e9c84e6d26",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CVCDYIP4A6DDRT7G6P3ZW6PKNK2DNWJ2/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.4.23",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.7.16",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.9.7",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.10 (includes 16.0 - 16.9)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "16.10.1",
                  "status": "affected",
                  "version": "16.10.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Visual Studio 2019 for Mac version 8.10",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "8.10.1",
                  "status": "affected",
                  "version": "8.1.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "3.1.16",
                  "status": "affected",
                  "version": "3.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "5.0.7",
                  "status": "affected",
                  "version": "5.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-06-08T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "ASP.NET Core Denial of Service Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 5.9,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Denial of Service",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-05-29T14:55:32.372Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31957"
            },
            {
              "name": "FEDORA-2021-4b3fc547fe",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PMHWHRRYDHKM6BIINW5V7OCSW4SDWB4W/"
            },
            {
              "name": "FEDORA-2021-cb4f3ab817",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4PRVVLXXQEF4SEJOBV3VRJHGX7YHY2CG/"
            },
            {
              "name": "FEDORA-2021-1e0e04958d",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VMAO4NG2OQ4PCXUQWMNSCMYWLIJJY6UY/"
            },
            {
              "name": "FEDORA-2021-e9c84e6d26",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CVCDYIP4A6DDRT7G6P3ZW6PKNK2DNWJ2/"
            }
          ],
          "title": "ASP.NET Core Denial of Service Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-31957",
        "datePublished": "2021-06-08T22:46:26.000Z",
        "dateReserved": "2021-04-30T00:00:00.000Z",
        "dateUpdated": "2024-08-03T23:10:31.331Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-31204 (GCVE-0-2021-31204)

    Vulnerability from cvelistv5 – Published: 2021-05-11 19:11 – Updated: 2024-08-03 22:55
    VLAI
    Title
    .NET and Visual Studio Elevation of Privilege Vulnerability
    Summary
    .NET and Visual Studio Elevation of Privilege Vulnerability
    CWE
    • Elevation of Privilege
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft .NET Core 3.1 Affected: 3.1 , < 3.1.15-servicing.21214.3 (custom)
        cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft .NET 5.0 Affected: 5.0.0 , < 5.0.6-servicing.21220.11 (custom)
        cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Visual Studio 2019 for Mac version 8.9 Affected: 8.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*
    Create a notification for this product.
    Date Public
    2021-05-11 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T22:55:53.545Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31204"
              },
              {
                "name": "FEDORA-2021-a3c205f5b2",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FVMWZPF4FR6JPFSNAIDIUDULHZJBVCW6/"
              },
              {
                "name": "FEDORA-2021-13e3bd248f",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6M7KL3KTHJVQNRA3CWFUTESQJARQEHSZ/"
              },
              {
                "name": "FEDORA-2021-721731dc86",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4F3VM3RMPE7PNNLLI3BPCSAXITQZCFCA/"
              },
              {
                "name": "FEDORA-2021-c06b64b5ee",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZWF25Z3CZ6LYCOHZ7FPSFAQ426JUBUZ4/"
              },
              {
                "name": "FEDORA-2021-f25eb9e302",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UV4ITB3SUDGR23G7XALUVKFJMZERFUKF/"
              },
              {
                "name": "FEDORA-2021-d551431950",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LFXJPQUYUITJMV75YN3XIGE3KKN5GOCU/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net_core:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET Core 3.1",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "3.1.15-servicing.21214.3",
                  "status": "affected",
                  "version": "3.1",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": ".NET 5.0",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "5.0.6-servicing.21220.11",
                  "status": "affected",
                  "version": "5.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:8.10:*:*:*:*:macos:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Visual Studio 2019 for Mac version 8.9",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "8.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-05-11T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": ".NET and Visual Studio Elevation of Privilege Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 7.3,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Elevation of Privilege",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T23:57:03.970Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31204"
            },
            {
              "name": "FEDORA-2021-a3c205f5b2",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FVMWZPF4FR6JPFSNAIDIUDULHZJBVCW6/"
            },
            {
              "name": "FEDORA-2021-13e3bd248f",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6M7KL3KTHJVQNRA3CWFUTESQJARQEHSZ/"
            },
            {
              "name": "FEDORA-2021-721731dc86",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4F3VM3RMPE7PNNLLI3BPCSAXITQZCFCA/"
            },
            {
              "name": "FEDORA-2021-c06b64b5ee",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZWF25Z3CZ6LYCOHZ7FPSFAQ426JUBUZ4/"
            },
            {
              "name": "FEDORA-2021-f25eb9e302",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UV4ITB3SUDGR23G7XALUVKFJMZERFUKF/"
            },
            {
              "name": "FEDORA-2021-d551431950",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LFXJPQUYUITJMV75YN3XIGE3KKN5GOCU/"
            }
          ],
          "title": ".NET and Visual Studio Elevation of Privilege Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-31204",
        "datePublished": "2021-05-11T19:11:40.000Z",
        "dateReserved": "2021-04-14T00:00:00.000Z",
        "dateUpdated": "2024-08-03T22:55:53.545Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-27068 (GCVE-0-2021-27068)

    Vulnerability from cvelistv5 – Published: 2021-05-11 19:11 – Updated: 2024-11-19 14:56
    VLAI
    Title
    Visual Studio Remote Code Execution Vulnerability
    Summary
    Visual Studio Remote Code Execution Vulnerability
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Remote Code Execution
    Assigner
    References
    Impacted products
    Vendor Product Version
    Microsoft Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) Affected: 16.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6) Affected: 16.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Microsoft Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8) Affected: 15.0.0 , < publication (custom)
        cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2021-05-11 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T20:40:47.252Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27068"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2021-27068",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-01-08T19:14:30.372062Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-11-19T14:56:33.373Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.7 (includes 16.0 \u2013 16.6)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "16.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "cpes": [
                "cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*"
              ],
              "platforms": [
                "Unknown"
              ],
              "product": "Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)",
              "vendor": "Microsoft",
              "versions": [
                {
                  "lessThan": "publication",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2021-05-11T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en-US",
              "value": "Visual Studio Remote Code Execution Vulnerability"
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en-US",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Remote Code Execution",
                  "lang": "en-US",
                  "type": "Impact"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-12-28T23:56:45.751Z",
            "orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
            "shortName": "microsoft"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27068"
            }
          ],
          "title": "Visual Studio Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8",
        "assignerShortName": "microsoft",
        "cveId": "CVE-2021-27068",
        "datePublished": "2021-05-11T19:11:13.000Z",
        "dateReserved": "2021-02-10T00:00:00.000Z",
        "dateUpdated": "2024-11-19T14:56:33.373Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }