What is the severity of CVE-2023-36042?

The severity of CVE-2023-36042 is high.

How does CVE-2023-36042 affect Visual Studio 2022?

CVE-2023-36042 affects Visual Studio 2022 versions 17.6, 17.2, and 17.7.

What is the remedy for CVE-2023-36042 on Visual Studio 2022?

The remedy for CVE-2023-36042 on Visual Studio 2022 is to install the corresponding patches. Links to the patches can be found in the Microsoft documentation.

Which versions of Visual Studio 2019 are affected by CVE-2023-36042?

CVE-2023-36042 affects Visual Studio 2019 versions 16.11 and includes versions 16.0 to 16.10.

Where can I find more information about CVE-2023-36042?

You can find more information about CVE-2023-36042 in the Microsoft Security Response Center.

Vulnerability/
CVE-2023-36042

medium

6.2

CWE

400 122

14/11/2023

9/7/2024

CVE-2023-36042: Visual Studio Denial of Service Vulnerability

First published: Tue Nov 14 2023(Updated: )

Visual Studio Denial of Service Vulnerability

Credit: secure@microsoft.com

Affected Software	Affected Version	How to fix
Microsoft Visual Studio 2022	=17.2	fix available externally
Microsoft Visual Studio 2022	=17.4	fix available externally
Microsoft Visual Studio 2019 (includes 16.0 - 16.10)	=16.11	fix available externally
Microsoft Visual Studio 2022	=17.7	fix available externally
Microsoft .NET Framework	=3.5=4.8.1	fix available externally
Microsoft .NET Framework	=3.5=4.8.1	fix available externally
Microsoft .NET Framework	=3.5=4.8.1	fix available externally
Microsoft .NET Framework	=3.5=4.8.1	fix available externally
Microsoft .NET Framework	=3.5=4.8.1	fix available externally
Microsoft .NET Framework	=3.5=4.8.1	fix available externally
Microsoft Visual Studio 2019	>=16.0<16.11.32
Microsoft Visual Studio 2022	>=17.2<17.2.22
Microsoft Visual Studio 2022	>=17.4<17.4.14
Microsoft Visual Studio 2022	>=17.6<17.6.10
Microsoft Visual Studio 2022	>=17.7<17.7.7

Remedy

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36042

Never miss a vulnerability like this again

Reference Links

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36042 (Advisory)

Frequently Asked Questions

What is the severity of CVE-2023-36042?
The severity of CVE-2023-36042 is high.
How does CVE-2023-36042 affect Visual Studio 2022?
CVE-2023-36042 affects Visual Studio 2022 versions 17.6, 17.2, and 17.7.
What is the remedy for CVE-2023-36042 on Visual Studio 2022?
The remedy for CVE-2023-36042 on Visual Studio 2022 is to install the corresponding patches. Links to the patches can be found in the Microsoft documentation.
Which versions of Visual Studio 2019 are affected by CVE-2023-36042?
CVE-2023-36042 affects Visual Studio 2019 versions 16.11 and includes versions 16.0 to 16.10.
Where can I find more information about CVE-2023-36042?
You can find more information about CVE-2023-36042 in the Microsoft Security Response Center.

collector/msrc-cve
collector/msrc
agent/type
agent/first-publish-date
source/Microsoft
agent/software-canonical-lookup
agent/references
agent/weakness
agent/severity
agent/author
agent/title
agent/remedy
agent/softwarecombine
agent/description
agent/software-canonical-lookup-request
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/tags
agent/event
collector/nvd-api
source/NVD
vendor/microsoft
canonical/microsoft visual studio 2019 (includes 16.0 - 16.10)
version/microsoft visual studio 2019 (includes 16.0 - 16.10)/16.11
canonical/microsoft .net framework
version/microsoft .net framework/3.5
version/microsoft .net framework/4.8.1
canonical/microsoft visual studio 2022
version/microsoft visual studio 2022/17.4
version/microsoft visual studio 2022/17.2
version/microsoft visual studio 2022/17.6
version/microsoft visual studio 2022/17.7
canonical/microsoft visual studio 2019
version/microsoft visual studio 2019/16.0