Microsoft Visual Studio Vulnerabilità

Sequenza temporale

L'anno scorso

Versione

2017 15.927
2019 16.1118
2017 Version 15.916
2019 16.013
2017 15.011

Contromisure

Official Fix183
Temporary Fix0
Workaround0
Unavailable5
Not Defined12

Sfruttabilità

High2
Functional0
Proof-of-Concept51
Unproven82
Not Defined65

Accesso al vettore

Not Defined0
Physical0
Local32
Adjacent12
Network156

Autenticazione

Not Defined0
High1
Low60
None139

Interazione dell'utente

Not Defined0
Required101
None99

C3BM Index

L'anno scorso

CVSSv3 Base

≤10
≤20
≤30
≤42
≤514
≤624
≤767
≤870
≤918
≤105

CVSSv3 Temp

≤10
≤20
≤30
≤45
≤516
≤646
≤788
≤837
≤94
≤104

VulDB

≤10
≤20
≤31
≤49
≤539
≤628
≤765
≤839
≤914
≤105

NVD

≤10
≤20
≤31
≤41
≤52
≤610
≤79
≤847
≤99
≤106

CNA

≤10
≤20
≤30
≤41
≤52
≤69
≤711
≤842
≤913
≤101

Fornitore

≤10
≤20
≤30
≤41
≤53
≤69
≤715
≤875
≤918
≤102

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k0
<2k1
<5k14
<10k47
<25k121
<50k16
<100k1
≥100k0

Exploiter aujourd'hui

<1k124
<2k39
<5k34
<10k3
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

L'anno scorso

🔴 CTI Attività

Affected Versions (84): 6, 6.0, 8.0, 17.0, 17.1, 17.2, 17.3, 17.4, 17.5, 17.6, 17.7, 2002, 2003, 2005, 2008, 2008 Express, 2010, 2010 SP1, 2012 Update 5, 2013 Update 5, 2015 Update 3, 2015 Update 5, 2017, 2017 15.0, 2017 15.1, 2017 15.2, 2017 15.3, 2017 15.4, 2017 15.5, 2017 15.6, 2017 15.7, 2017 15.8, 2017 15.9, 2017 Version 15.0, 2017 Version 15.1, 2017 Version 15.2, 2017 Version 15.3, 2017 Version 15.4, 2017 Version 15.5, 2017 Version 15.6, 2017 Version 15.7, 2017 Version 15.7.5, 2017 Version 15.8, 2017 Version 15.8 Preview, 2017 Version 15.9, 2019, 2019 16.0, 2019 16.1, 2019 16.2, 2019 16.3, 2019 16.4, 2019 16.5, 2019 16.6, 2019 16.7, 2019 16.8, 2019 16.9, 2019 16.10, 2019 16.11, 2019 Version 16.0, 2019 Version 16.1, 2019 Version 16.2, 2019 Version 16.3, 2019 Version 16.4, 2019 Version 16.5, 2019 Version 16.6, 2019 Version 16.7, 2019 Version 16.8, 2019 Version 16.9, 2019 version 16.0, 2019 version 16.1, 2019 version 16.2, 2019 version 16.3, 2019 version 16.4, 2020, 2022, 2022 17.0, 2022 17.1, 2022 17.2, 2022 17.3, 2022 17.4, 2022 17.5, 2022 17.6, 2022 17.7, 2022 17.15

Link to Product Website: https://www.microsoft.com/

Tipo di software: Programming Tool Software

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
12/03/20248.87.7Microsoft Visual Studio Code Privilege Escalation$5k-$25k$0-$5kUnprovenOfficial Fix0.08CVE-2024-26165
12/03/20247.56.7Microsoft .NET/Visual Studio denial of service$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.04CVE-2024-21392
13/02/20247.57.0Microsoft Visual Studio/.NET denial of service$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.02CVE-2024-21404
13/02/20247.57.0Microsoft Visual Studio/ASP.NET Core denial of service$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.05CVE-2024-21386
09/01/20246.86.2Microsoft .NET/Identity Model/Visual Studio denial of service$5k-$25k$0-$5kUnprovenOfficial Fix0.02CVE-2024-21319
09/01/20247.87.1Microsoft Visual Studio Local Privilege Escalation$5k-$25k$0-$5kUnprovenOfficial Fix0.04CVE-2024-20656
09/01/20248.88.4Microsoft .NET/.NET Framework/Visual Studio Remote Code Execution$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.03CVE-2024-0057
09/01/20248.07.3Microsoft .NET/.NET Framework/SQL Server/Visual Studio SQL Data Provider Remote Code Execution$5k-$25k$5k-$25kUnprovenOfficial Fix0.02CVE-2024-0056
29/12/20236.46.3Microsoft Python Extension for Visual Studio Code Remote Code Execution$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2020-17163
14/11/20235.35.1Microsoft ASP.NET/.NET/Visual Studio rivelazione di un 'informazione$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2023-36558
14/11/20238.17.7Microsoft .NET/.NET Framework/Visual Studio Privilege Escalation$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.08CVE-2023-36049
14/11/20235.85.5Microsoft Visual Studio denial of service$0-$5k$0-$5kUnprovenOfficial Fix0.03CVE-2023-36042
14/11/20237.36.8Microsoft ASP.NET/.NET/Visual Studio denial of service$5k-$25k$0-$5kUnprovenOfficial Fix0.04CVE-2023-36038
14/11/20238.37.8Microsoft Jupyter Extension for Visual Studio Code Local Privilege Escalation$5k-$25k$0-$5kUnprovenOfficial Fix0.08CVE-2023-36018
12/09/20235.95.8Microsoft Visual Studio Code escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2023-39956
12/09/20235.85.3Microsoft Visual Studio denial of service$5k-$25k$0-$5kUnprovenOfficial Fix0.04CVE-2023-36799
12/09/20236.15.6Microsoft Visual Studio Remote Code Execution$5k-$25k$0-$5kUnprovenOfficial Fix0.05CVE-2023-36759
12/09/20237.77.2Microsoft Visual Studio Local Privilege Escalation$0-$5k$0-$5kUnprovenOfficial Fix0.03CVE-2023-36758
12/09/20236.96.3Microsoft Visual Studio Code Remote Code Execution$5k-$25k$0-$5kUnprovenOfficial Fix0.02CVE-2023-36742
08/08/20236.86.2Microsoft .NET/Visual Studio denial of service$5k-$25k$0-$5kUnprovenOfficial Fix0.04CVE-2023-38178
08/08/20236.45.7Microsoft ASP.NET/.NET/Visual Studio denial of service$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2023-38180
08/08/20237.26.9Microsoft Visual Studio/Office/365 Apps for Enterprise Remote Code Execution$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.07CVE-2023-36897
08/08/20236.26.0Microsoft ASP.NET Core/.NET/Visual Studio rivelazione di un 'informazione$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.03CVE-2023-35391
08/08/20238.17.6Microsoft .NET/Visual Studio Remote Code Execution$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2023-35390
11/07/20237.06.5Microsoft Visual Studio Code GitHub Pull Requests/Issues Extension Local Privilege Escalation$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.02CVE-2023-36867

175 non vengono visualizzate più voci

altre voci di Microsoft

Interested in the pricing of exploits?

See the underground prices here!