Show filters
13 Total Results
Displaying 1-10 of 13
Sort by:
Attacker Value
High
CVE-2020-1147
Disclosure Date: July 14, 2020 (last updated February 21, 2025)
A remote code execution vulnerability exists in .NET Framework, Microsoft SharePoint, and Visual Studio when the software fails to check the source markup of XML file input, aka '.NET Framework, SharePoint Server, and Visual Studio Remote Code Execution Vulnerability'.
5
Attacker Value
Unknown
CVE-2019-0537
Disclosure Date: January 08, 2019 (last updated November 27, 2024)
An information disclosure vulnerability exists when Visual Studio improperly discloses arbitrary file contents if the victim opens a malicious .vscontent file, aka "Microsoft Visual Studio Information Disclosure Vulnerability." This affects Microsoft Visual Studio.
1
Attacker Value
Unknown
CVE-2023-36897
Disclosure Date: August 08, 2023 (last updated October 08, 2023)
Visual Studio Tools for Office Runtime Spoofing Vulnerability
0
Attacker Value
Unknown
CVE-2020-6219
Disclosure Date: April 14, 2020 (last updated February 21, 2025)
SAP Business Objects Business Intelligence Platform (CrystalReports WebForm Viewer), versions 4.1, 4.2, and Crystal Reports for VS version 2010, allows an attacker with basic authorization to perform deserialization attack in the application, leading to service interruptions and denial of service and unauthorized execution of arbitrary commands, leading to Deserialization of Untrusted Data.
0
Attacker Value
Unknown
CVE-2019-1079
Disclosure Date: July 15, 2019 (last updated November 27, 2024)
An information disclosure vulnerability exists when Visual Studio improperly parses XML input in certain settings files, aka 'Visual Studio Information Disclosure Vulnerability'.
0
Attacker Value
Unknown
CVE-2018-8172
Disclosure Date: July 11, 2018 (last updated November 27, 2024)
A remote code execution vulnerability exists in Visual Studio software when the software does not check the source markup of a file for an unbuilt project, aka "Visual Studio Remote Code Execution Vulnerability." This affects Microsoft Visual Studio, Expression Blend 4.
0
Attacker Value
Unknown
CVE-2018-1037
Disclosure Date: April 12, 2018 (last updated November 26, 2024)
An information disclosure vulnerability exists when Visual Studio improperly discloses limited contents of uninitialized memory while compiling program database (PDB) files, aka "Microsoft Visual Studio Information Disclosure Vulnerability." This affects Microsoft Visual Studio.
0
Attacker Value
Unknown
CVE-2014-3802
Disclosure Date: May 20, 2014 (last updated October 05, 2023)
msdia.dll in Microsoft Debug Interface Access (DIA) SDK, as distributed in Microsoft Visual Studio before 2013, does not properly validate an unspecified variable before use in calculating a dynamic-call address, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted PDB file.
0
Attacker Value
Unknown
CVE-2013-3129
Disclosure Date: July 10, 2013 (last updated December 08, 2023)
Microsoft .NET Framework 3.0 SP2, 3.5, 3.5.1, 4, and 4.5; Silverlight 5 before 5.1.20513.0; win32k.sys in the kernel-mode drivers, and GDI+, DirectWrite, and Journal, in Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT; GDI+ in Office 2003 SP3, 2007 SP3, and 2010 SP1; GDI+ in Visual Studio .NET 2003 SP1; and GDI+ in Lync 2010, 2010 Attendee, 2013, and Basic 2013 allow remote attackers to execute arbitrary code via a crafted TrueType Font (TTF) file, aka "TrueType Font Parsing Vulnerability."
0
Attacker Value
Unknown
CVE-2012-1892
Disclosure Date: September 11, 2012 (last updated October 05, 2023)
Cross-site scripting (XSS) vulnerability in Microsoft Visual Studio Team Foundation Server 2010 SP1 allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka "XSS Vulnerability."
0
