What is CVE-2022-35826?

CVE-2022-35826 is a visual Studio remote code execution vulnerability.

How severe is CVE-2022-35826?

CVE-2022-35826 has a severity rating of 8.8 (high).

Which versions of Visual Studio are affected by CVE-2022-35826?

Visual Studio 2012, Visual Studio 2015, Visual Studio 2019 (16.0 - 16.8), Visual Studio 2017 (15.0 - 15.8), Visual Studio 2013, Visual Studio 2019 (16.0 - 16.10), Visual Studio 2022 (17.0), Visual Studio 2022 (17.2) are affected by CVE-2022-35826.

How do I fix CVE-2022-35826 in Visual Studio 2012?

To fix CVE-2022-35826 in Visual Studio 2012, update to version 5.

How do I fix CVE-2022-35826 in Visual Studio 2015?

To fix CVE-2022-35826 in Visual Studio 2015, update to version 3.

How do I fix CVE-2022-35826 in Visual Studio 2019 (16.0 - 16.8)?

To fix CVE-2022-35826 in Visual Studio 2019 (16.0 - 16.8), refer to the Microsoft support page for the specific remedy.

How do I fix CVE-2022-35826 in Visual Studio 2017 (15.0 - 15.8)?

To fix CVE-2022-35826 in Visual Studio 2017 (15.0 - 15.8), refer to the Microsoft support page for the specific remedy.

How do I fix CVE-2022-35826 in Visual Studio 2013?

To fix CVE-2022-35826 in Visual Studio 2013, update to version 5.

How do I fix CVE-2022-35826 in Visual Studio 2019 (16.0 - 16.10)?

To fix CVE-2022-35826 in Visual Studio 2019 (16.0 - 16.10), refer to the Microsoft support page for the specific remedy.

How do I fix CVE-2022-35826 in Visual Studio 2022 (17.0)?

To fix CVE-2022-35826 in Visual Studio 2022 (17.0), refer to the Microsoft support page for the specific remedy.

How do I fix CVE-2022-35826 in Visual Studio 2022 (17.2)?

To fix CVE-2022-35826 in Visual Studio 2022 (17.2), refer to the Microsoft support page for the specific remedy.

Vulnerability/
CVE-2022-35826

high

8.8

9/8/2022

21/10/2024

CVE-2022-35826: Visual Studio Remote Code Execution Vulnerability

First published: Tue Aug 09 2022(Updated: )

Visual Studio Remote Code Execution Vulnerability

Credit: secure@microsoft.com

Affected Software	Affected Version	How to fix
Microsoft Visual Studio 2012	=5	fix available externally
Microsoft Visual Studio 2015	=3	fix available externally
Microsoft Visual Studio 2019 (includes 16.0 - 16.8)	=16.9	fix available externally
Microsoft Visual Studio 2017 (includes 15.0 - 15.8)	=15.9	fix available externally
Microsoft Visual Studio 2013	=5	fix available externally
Microsoft Visual Studio 2019 (includes 16.0 - 16.10)	=16.11	fix available externally
Microsoft Visual Studio 2022	=17.0	fix available externally
Microsoft Visual Studio 2022	=17.2	fix available externally
Microsoft Visual Studio	=2012-update_5
Microsoft Visual Studio	=2013-update_5
Microsoft Visual Studio	=2015-update3
Microsoft Visual Studio 2017	=15.9
Microsoft Visual Studio 2019	=16.9
Microsoft Visual Studio 2019	=16.11
Microsoft Visual Studio 2022	=17.0
Microsoft Visual Studio 2022	=17.2

Never miss a vulnerability like this again

Reference Links

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-35826 (Advisory)

Frequently Asked Questions

What is CVE-2022-35826?
CVE-2022-35826 is a visual Studio remote code execution vulnerability.
How severe is CVE-2022-35826?
CVE-2022-35826 has a severity rating of 8.8 (high).
Which versions of Visual Studio are affected by CVE-2022-35826?
Visual Studio 2012, Visual Studio 2015, Visual Studio 2019 (16.0 - 16.8), Visual Studio 2017 (15.0 - 15.8), Visual Studio 2013, Visual Studio 2019 (16.0 - 16.10), Visual Studio 2022 (17.0), Visual Studio 2022 (17.2) are affected by CVE-2022-35826.
How do I fix CVE-2022-35826 in Visual Studio 2012?
To fix CVE-2022-35826 in Visual Studio 2012, update to version 5.
How do I fix CVE-2022-35826 in Visual Studio 2015?
To fix CVE-2022-35826 in Visual Studio 2015, update to version 3.
How do I fix CVE-2022-35826 in Visual Studio 2019 (16.0 - 16.8)?
To fix CVE-2022-35826 in Visual Studio 2019 (16.0 - 16.8), refer to the Microsoft support page for the specific remedy.
How do I fix CVE-2022-35826 in Visual Studio 2017 (15.0 - 15.8)?
To fix CVE-2022-35826 in Visual Studio 2017 (15.0 - 15.8), refer to the Microsoft support page for the specific remedy.
How do I fix CVE-2022-35826 in Visual Studio 2013?
To fix CVE-2022-35826 in Visual Studio 2013, update to version 5.
How do I fix CVE-2022-35826 in Visual Studio 2019 (16.0 - 16.10)?
To fix CVE-2022-35826 in Visual Studio 2019 (16.0 - 16.10), refer to the Microsoft support page for the specific remedy.
How do I fix CVE-2022-35826 in Visual Studio 2022 (17.0)?
To fix CVE-2022-35826 in Visual Studio 2022 (17.0), refer to the Microsoft support page for the specific remedy.
How do I fix CVE-2022-35826 in Visual Studio 2022 (17.2)?
To fix CVE-2022-35826 in Visual Studio 2022 (17.2), refer to the Microsoft support page for the specific remedy.

agent/type
agent/event
agent/description
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
collector/nvd-index
agent/software-canonical-lookup-request
agent/references
agent/severity
agent/author
agent/title
agent/tags
collector/mitre-cve
source/MITRE
collector/msrc-cve
source/Microsoft
agent/software-canonical-lookup
vendor/microsoft
canonical/microsoft visual studio
version/microsoft visual studio/2012-update_5
version/microsoft visual studio/2013-update_5
version/microsoft visual studio/2015-update3
canonical/microsoft visual studio 2017
version/microsoft visual studio 2017/15.9
canonical/microsoft visual studio 2019
version/microsoft visual studio 2019/16.9
version/microsoft visual studio 2019/16.11
canonical/microsoft visual studio 2022
version/microsoft visual studio 2022/17.0
version/microsoft visual studio 2022/17.2
canonical/microsoft visual studio 2017 (includes 15.0 - 15.8)
version/microsoft visual studio 2017 (includes 15.0 - 15.8)/15.9
canonical/microsoft visual studio 2012
version/microsoft visual studio 2012/5
canonical/microsoft visual studio 2019 (includes 16.0 - 16.10)
version/microsoft visual studio 2019 (includes 16.0 - 16.10)/16.11
canonical/microsoft visual studio 2015
version/microsoft visual studio 2015/3
canonical/microsoft visual studio 2019 (includes 16.0 - 16.8)
version/microsoft visual studio 2019 (includes 16.0 - 16.8)/16.9
canonical/microsoft visual studio 2013
version/microsoft visual studio 2013/5