Visual_studio_2019 - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Visual_studio_2019
(Microsoft)

Repositories	Unknown: This might be proprietary software.
#Vulnerabilities	99

Date	Id	Summary	Products	Score	Patch	Annotated
2022-10-11	CVE-2022-41032	NuGet Client Elevation of Privilege Vulnerability	Fedora, \.net, \.net_core, Visual_studio_2019, Visual_studio_2022	7.8
2022-03-09	CVE-2022-24464	.NET and Visual Studio Denial of Service Vulnerability	Fedora, \.net, \.net_core, Visual_studio_2019, Visual_studio_2022	7.5
2023-04-11	CVE-2023-28299	Visual Studio Spoofing Vulnerability	Visual_studio_2017, Visual_studio_2019, Visual_studio_2022	5.5
2020-01-24	CVE-2019-1349	A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1350, CVE-2019-1352, CVE-2019-1354, CVE-2019-1387.	Visual_studio_2017, Visual_studio_2019	8.8
2020-01-24	CVE-2019-1350	A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1349, CVE-2019-1352, CVE-2019-1354, CVE-2019-1387.	Visual_studio_2017, Visual_studio_2019	8.8
2020-01-24	CVE-2019-1351	A tampering vulnerability exists when Git for Visual Studio improperly handles virtual drive paths, aka 'Git for Visual Studio Tampering Vulnerability'.	Visual_studio_2017, Visual_studio_2019, Leap	7.5
2020-01-24	CVE-2019-1352	A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1349, CVE-2019-1350, CVE-2019-1354, CVE-2019-1387.	Visual_studio_2017, Visual_studio_2019	8.8
2020-01-24	CVE-2019-1354	A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input, aka 'Git for Visual Studio Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1349, CVE-2019-1350, CVE-2019-1352, CVE-2019-1387.	Visual_studio_2017, Visual_studio_2019	8.8
2020-09-15	CVE-2020-8927	A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a "one-shot" decompression request to a script can trigger a crash, which happens when copying over chunks of data larger than 2 GiB. It is recommended to update your Brotli library to 1.0.8 or later. If one cannot update, we recommend to use the "streaming" API as opposed to the "one-shot" API, and impose chunk size limits.	Ubuntu_linux, Debian_linux, Fedora, Brotli, \.net, \.net_core, Powershell, Visual_studio_2019, Visual_studio_2022, Leap	6.5
2020-05-21	CVE-2020-1108	A denial of service vulnerability exists when .NET Core or .NET Framework improperly handles web requests, aka '.NET Core & .NET Framework Denial of Service Vulnerability'.	\.net, \.net_core, \.net_framework, Powershell, Powershell_core, Visual_studio_2017, Visual_studio_2019	7.5