Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft visual studio 2017 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2020-26870
Cure53 DOMPurify prior to 2.0.17 allows mutation XSS. This occurs because a serialize-parse roundtrip does not necessarily return the original DOM tree, and a namespace can change from HTML to MathML, as demonstrated by nesting of FORM elements.
Cure53 Dompurify
Debian Debian Linux 9.0
Microsoft Visual Studio 2017 15.9
Microsoft Visual Studio 2019 16.0
Microsoft Visual Studio 2019 16.4
Microsoft Visual Studio 2019 16.8
Microsoft Visual Studio 2019 16.7
Oracle Application Express
4.3
CVSSv2
CVE-2020-0884
A spoofing vulnerability exists in Microsoft Visual Studio as it includes a reply URL that is not secured by SSL, aka 'Microsoft Visual Studio Spoofing Vulnerability'.
Microsoft Visual Studio 2017
Microsoft Visual Studio 2019
1 Article
4.3
CVSSv2
CVE-2019-11358
jQuery prior to 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable __proto__ property, it could extend the native Object.prototype.
Jquery Jquery
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Drupal Drupal
Backdropcms Backdrop
Fedoraproject Fedora 28
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
Netapp Snapcenter -
Netapp Oncommand System Manager
Redhat Cloudforms 4.7
Redhat Virtualization Manager 4.3
Oracle Service Bus 12.1.3.0.0
Oracle Primavera Unifier 16.2
Oracle Jd Edwards Enterpriseone Tools 9.2
Oracle Weblogic Server 12.1.3.0.0
Oracle Service Bus 11.1.1.9.0
Oracle Jdeveloper 11.1.1.9.0
Oracle Primavera Unifier 16.1
149 Github repositories
4.3
CVSSv2
CVE-2019-0657
A vulnerability exists in certain .Net Framework API's and Visual Studio in the way they parse URL's, aka '.NET Framework and Visual Studio Spoofing Vulnerability'.
Microsoft .net Core 1.0
Microsoft .net Core 2.1
Microsoft .net Core 2.2
Microsoft Visual Studio 2017 -
Microsoft Visual Studio 2017 15.9
Microsoft Powershell Core 6.1
Microsoft Powershell Core 6.0
Microsoft .net Framework 2.0
Microsoft .net Framework 3.0
Microsoft .net Framework 3.5
Microsoft .net Framework 3.5.1
Microsoft .net Framework 4.5.2
Microsoft .net Framework 4.6
Microsoft .net Framework 4.6.2
Microsoft .net Framework 4.7.1
Microsoft .net Framework 4.7
Microsoft .net Framework 4.7.2
Microsoft .net Framework 4.6.1
1 Article
4.3
CVSSv2
CVE-2018-1037
An information disclosure vulnerability exists when Visual Studio improperly discloses limited contents of uninitialized memory while compiling program database (PDB) files, aka "Microsoft Visual Studio Information Disclosure Vulnerability." This affects Microsoft Visua...
Microsoft Visual Studio 2017
Microsoft Visual Studio 2013
Microsoft Visual Studio 2010
Microsoft Visual Studio 2017 15.7
Microsoft Visual Studio 2017 15.6.6
Microsoft Visual Studio 2015
Microsoft Visual Studio 2012
3.7
CVSSv2
CVE-2019-1211
An elevation of privilege vulnerability exists in Git for Visual Studio when it improperly parses configuration files. An attacker who successfully exploited the vulnerability could execute code in the context of another local user. To exploit the vulnerability, an authenticated ...
Microsoft Visual Studio 2017 -
Microsoft Visual Studio 2017 15.9
Microsoft Visual Studio 2019 16.0
Microsoft Visual Studio 2019 16.2
1 Article
3.6
CVSSv2
CVE-2020-0899
An elevation of privilege vulnerability exists when Microsoft Visual Studio updater service improperly handles file permissions, aka 'Microsoft Visual Studio Elevation of Privilege Vulnerability'.
Microsoft Visual Studio 2017 15.9
Microsoft Visual Studio 2019 16.0
Microsoft Visual Studio 2019 16.4
Microsoft Visual Studio 2019 16.5.0
1 Article
3.6
CVSSv2
CVE-2020-0900
An elevation of privilege vulnerability exists when the Visual Studio Extension Installer Service improperly handles file operations, aka 'Visual Studio Extension Installer Service Elevation of Privilege Vulnerability'.
Microsoft Visual Studio 2015 Update 3
Microsoft Visual Studio 2017 15.9
Microsoft Visual Studio 2019 16.0
Microsoft Visual Studio 2019 16.4
Microsoft Visual Studio 2019 16.5.0
1 Article
2.1
CVSSv2
CVE-2021-42319
Visual Studio Elevation of Privilege Vulnerability
Microsoft Visual Studio 2017
Microsoft Visual Studio 2019
2.1
CVSSv2
CVE-2021-34485
.NET Core and Visual Studio Information Disclosure Vulnerability
Microsoft Visual Studio 2017
Microsoft Visual Studio 2019
Microsoft .net
Microsoft .net Core
Microsoft Powershell Core
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »