CVE-2022-35825: Visual Studio Remote Code Execution Vulnerability
First published: Tue Aug 09 2022(Updated: )
Visual Studio Remote Code Execution Vulnerability
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| =17.2 | ||
| =5 | ||
| =15.9 | ||
| =3 | ||
| =5 | ||
| =16.9 | ||
| =16.11 | ||
| =17.0 | ||
| Microsoft Visual Studio | =2012-update_5 | |
| Microsoft Visual Studio | =2013-update_5 | |
| Microsoft Visual Studio | =2015-update3 | |
| Microsoft Visual Studio 2017 | =15.9 | |
| Microsoft Visual Studio 2019 | =16.9 | |
| Microsoft Visual Studio 2019 | =16.11 | |
| Microsoft Visual Studio 2022 | =17.0 | |
| Microsoft Visual Studio 2022 | =17.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-35825?
CVE-2022-35825 is a Visual Studio Remote Code Execution Vulnerability.
How severe is CVE-2022-35825?
CVE-2022-35825 has a severity value of 8.8, which is considered high.
Which versions of Visual Studio are affected by CVE-2022-35825?
Visual Studio 2022 (version 17.0), Visual Studio 2019 (versions 16.0 - 16.10), Visual Studio 2019 (versions 16.0 - 16.8), Visual Studio 2013, Visual Studio 2015, Visual Studio 2022 (version 17.2), Visual Studio 2012, and Visual Studio 2017 (versions 15.0 - 15.8) are affected by CVE-2022-35825.
How can I fix CVE-2022-35825?
To fix CVE-2022-35825, you should update your Visual Studio software to the latest version available. Microsoft provides patches and release notes on their website for each affected version.
Where can I find more information about CVE-2022-35825?
You can find more information about CVE-2022-35825 on the Microsoft Security Response Center website.
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- collector/msrc
- source/Microsoft
- collector/msrc-cve
- agent/softwarecombine
- agent/software-canonical-lookup
- agent/author
- agent/severity
- agent/references
- agent/title
- agent/description
- agent/event
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/microsoft
- canonical/microsoft visual studio 2019 (includes 16.0 - 16.8)
- version/microsoft visual studio 2019 (includes 16.0 - 16.8)/16.9
- canonical/microsoft visual studio 2012
- version/microsoft visual studio 2012/5
- canonical/microsoft visual studio 2017 (includes 15.0 - 15.8)
- version/microsoft visual studio 2017 (includes 15.0 - 15.8)/15.9
- canonical/microsoft visual studio 2013
- version/microsoft visual studio 2013/5
- canonical/microsoft visual studio 2019 (includes 16.0 - 16.10)
- version/microsoft visual studio 2019 (includes 16.0 - 16.10)/16.11
- canonical/microsoft visual studio 2015
- version/microsoft visual studio 2015/3
- canonical/microsoft visual studio 2022
- version/microsoft visual studio 2022/17.2
- version/microsoft visual studio 2022/17.0
- canonical/microsoft visual studio
- version/microsoft visual studio/2012-update_5
- version/microsoft visual studio/2013-update_5
- version/microsoft visual studio/2015-update3
- canonical/microsoft visual studio 2017
- version/microsoft visual studio 2017/15.9
- canonical/microsoft visual studio 2019
- version/microsoft visual studio 2019/16.9
- version/microsoft visual studio 2019/16.11