Latest microsoft visual studio 2017 (includes 15.0 - 15.8) Vulnerabilities

CVE-2024-32002
Recursive clones on case-insensitive filesystems that support symlinks are susceptible to Remote Code Execution
Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9
CVE-2024-32004
Git vulnerable to Remote Code Execution while cloning special-crafted local repositories
Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11
Microsoft Visual Studio 2022=17.8
Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9
Microsoft Visual Studio 2022=17.6
CVE-2024-20656
Visual Studio Elevation of Privilege Vulnerability
Microsoft Visual Studio 2022=17.2
Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9
Microsoft Visual Studio 2015=3
Microsoft Visual Studio 2022=17.4
Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11
Microsoft Visual Studio=2015-update3
and 5 more
CVE-2023-36796
Visual Studio Remote Code Execution Vulnerability
Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9
Microsoft PowerShell 7.2
Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11
Microsoft .NET Framework=3.0
Microsoft .NET Framework=4.8
Microsoft .NET Framework=3.5=4.8
and 68 more
CVE-2023-36794
Visual Studio Remote Code Execution Vulnerability
Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9
Microsoft PowerShell 7.2
Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11
Microsoft .NET Framework=3.5
Microsoft .NET Framework=3.0
Microsoft .NET Framework=3.5=4.8
and 67 more
CVE-2023-36793
Visual Studio Remote Code Execution Vulnerability
Microsoft PowerShell 7.2
Microsoft .NET Framework=3.5=4.8.1
Microsoft .NET Framework=3.5=4.8
Microsoft .NET Framework=3.5=4.8.1
Microsoft .NET Framework=3.5=4.8.1
Microsoft .NET Framework=3.5=4.8
and 66 more
CVE-2023-36792
Visual Studio Remote Code Execution Vulnerability
Microsoft PowerShell 7.2
Microsoft .NET Framework=3.5=4.8.1
Microsoft .NET Framework=2.0
Microsoft .NET Framework=3.5=4.8.1
Microsoft .NET Framework=4.8
Microsoft .NET Framework=4.8
and 67 more
CVE-2023-36897
Visual Studio Tools for Office Runtime Spoofing Vulnerability
Microsoft Visual Studio 2010 Tools for Office Runtime
Microsoft Office 2019 for 64-bit editions
Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11
Microsoft 365 Apps for Enterprise
Microsoft 365 Apps for Enterprise
Microsoft Office 2019 for 32-bit editions
and 17 more
CVE-2023-33139
Visual Studio Information Disclosure Vulnerability
Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9
Microsoft Visual Studio 2013=5
Microsoft Visual Studio 2015=3
Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11
Microsoft Visual Studio 2022=17.6
Microsoft Visual Studio 2022=17.0
and 11 more
CVE-2023-24897
.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability
Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9
Microsoft Visual Studio 2013=5
Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11
Microsoft Visual Studio 2015=3
Microsoft PowerShell 7.2
Microsoft .NET Framework and 4.6.2=3.5
and 76 more
CVE-2023-29011
Git for Windows, the Windows port of Git, ships with an executable called `connect.exe`, which implements a SOCKS5 proxy that can be used to connect e.g. to SSH servers via proxies when certain ports ...
Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9
Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11
Microsoft Visual Studio 2022=17.6
Microsoft Visual Studio 2022=17.2
Microsoft Visual Studio 2022=17.0
Git For Windows Project Git For Windows<2.40.1
CVE-2023-29012
Git for Windows is the Windows port of Git. Prior to version 2.40.1, any user of Git CMD who starts the command in an untrusted directory is impacted by an Uncontrolles Search Path Element vulnerabili...
Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9
Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11
Microsoft Visual Studio 2022=17.6
Microsoft Visual Studio 2022=17.0
Microsoft Visual Studio 2022=17.2
Git For Windows Project Git For Windows<2.40.1
CVE-2023-29007
Arbitrary configuration injection via `git submodule deinit`
Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9
redhat/git<0:1.8.3.1-25.el7_9
redhat/git<0:2.39.3-1.el8_8
redhat/git<0:2.18.4-3.el8_1
redhat/git<0:2.18.4-4.el8_2
redhat/git<0:2.27.0-4.el8_4
and 23 more
CVE-2023-25815
Git looks for localized messages in the wrong place
Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9
redhat/git<0:2.39.3-1.el8_8
redhat/git<0:2.18.4-3.el8_1
redhat/git<0:2.18.4-4.el8_2
redhat/git<0:2.27.0-4.el8_4
redhat/git<0:2.31.1-4.el8_6
and 10 more
CVE-2023-25652
"git apply --reject" partially-controlled arbitrary file write
redhat/git<0:1.8.3.1-25.el7_9
redhat/git<0:2.39.3-1.el8_8
redhat/git<0:2.18.4-3.el8_1
redhat/git<0:2.18.4-4.el8_2
redhat/git<0:2.27.0-4.el8_4
redhat/git<0:2.31.1-4.el8_6
and 35 more
CVE-2023-27909
An Out-Of-Bounds Write Vulnerability in Autodesk® FBX® SDK version 2020 or prior may lead to code execution through maliciously crafted FBX files or information disclosure.
Autodesk FBX Software Development Kit>=2020.0<2020.3.4
=17.2
=5
=15.9
and 9 more
CVE-2023-27910
AutoDesk: CVE-2023-27910 stack buffer overflow vulnerability in Autodesk® FBX® SDK 2020 or prior
Microsoft Visual Studio 2013=5
Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9
Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11
Microsoft Visual Studio 2015=3
Microsoft Visual Studio 2022=17.2
Microsoft Visual Studio 2022=17.6
and 2 more
CVE-2023-27911
A user may be tricked into opening a malicious FBX file that may exploit a heap buffer overflow vulnerability in Autodesk® FBX® SDK 2020 or prior which may lead to code execution.
Autodesk FBX Software Development Kit>=2020.0<2020.3.4
=17.2
=5
=15.9
and 9 more
CVE-2023-28299
Visual Studio Spoofing Vulnerability
Microsoft Visual Studio 2022=17.2
Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9
Microsoft Visual Studio 2022=17.4
Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11
Microsoft Visual Studio 2022=17.0
Microsoft Visual Studio 2017>=15.0<15.9.54
and 6 more
CVE-2023-28296
Visual Studio Remote Code Execution Vulnerability
Microsoft Visual Studio 2022=17.2
Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9
Microsoft Visual Studio 2022=17.4
Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11
Microsoft Visual Studio 2022=17.0
Microsoft Visual Studio 2017>=15.0<15.9.54
and 6 more
CVE-2023-23618
Git for Windows is the Windows port of the revision control system Git. Prior to Git for Windows version 2.39.2, when `gitk` is run on Windows, it potentially runs executables from the current directo...
Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9
Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11
Microsoft Visual Studio 2022=17.5
Microsoft Visual Studio 2022=17.2
Microsoft Visual Studio 2022=17.0
Git For Windows Project Git For Windows<2.39.2
CVE-2023-22743
Git for Windows is the Windows port of the revision control system Git. Prior to Git for Windows version 2.39.2, by carefully crafting DLL and putting into a subdirectory of a specific name living nex...
Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9
Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11
Microsoft Visual Studio 2022=17.2
Microsoft Visual Studio 2022=17.5
Microsoft Visual Studio 2022=17.0
Git For Windows Project Git For Windows<2.39.2
CVE-2023-21815
Visual Studio Remote Code Execution Vulnerability
Microsoft Visual Studio 2022=17.2
Microsoft Visual Studio 2013=5
Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9
Microsoft Visual Studio 2015=3
Microsoft Visual Studio 2022=17.4
Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11
and 6 more
CVE-2023-21567
Visual Studio Denial of Service Vulnerability
Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11
Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9
Microsoft Visual Studio 2022=17.2
Microsoft Visual Studio 2022=17.4
Microsoft Visual Studio 2022=17.0
Microsoft Visual Studio 2017>=15.0<15.9.52
and 4 more
CVE-2023-23381
Visual Studio Remote Code Execution Vulnerability
Microsoft Visual Studio 2022=17.2
Microsoft Visual Studio 2013=5
Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9
Microsoft Visual Studio 2015=3
Microsoft Visual Studio 2022=17.4
Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11
and 6 more
CVE-2023-21808
.NET and Visual Studio Remote Code Execution Vulnerability
Microsoft Visual Studio 2013=5
Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9
Microsoft .NET Framework and 4.6.2=3.5
Microsoft PowerShell 7.2
Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11
Microsoft Visual Studio 2015=3
and 172 more
CVE-2023-21566
Visual Studio Elevation of Privilege Vulnerability
Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9
Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11
Microsoft Visual Studio 2022=17.4
Microsoft Visual Studio 2022=17.0
Microsoft Visual Studio 2022=17.2
Microsoft Visual Studio 2017>=15.0<15.9.52
and 4 more
CVE-2023-23946
Git's `git apply` overwriting paths outside the working tree
redhat/git<0:2.39.3-1.el8_8
redhat/git<0:2.39.3-1.el9_2
<2.30.8
>=2.31.0<2.31.7
>=2.32.0<2.32.6
>=2.33.0<2.33.7
and 21 more
CVE-2022-41119
Visual Studio Remote Code Execution Vulnerability
Microsoft Visual Studio 2017>=15.0<=15.9
Microsoft Visual Studio 2019>=16.0<=16.11
Microsoft Visual Studio 2022=17.0
Microsoft Visual Studio 2022=17.2
Microsoft Visual Studio 2022=17.3
=17.0
and 4 more
CVE-2022-35825
Visual Studio Remote Code Execution Vulnerability
=17.2
=5
=15.9
=3
=5
=16.9
and 10 more
CVE-2022-35827
Visual Studio Remote Code Execution Vulnerability
Microsoft Visual Studio 2012=5
Microsoft Visual Studio 2015=3
Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9
Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11
Microsoft Visual Studio 2019 (includes 16.0 - 16.8)=16.9
Microsoft Visual Studio 2013=5
and 10 more
CVE-2022-35826
Visual Studio Remote Code Execution Vulnerability
Microsoft Visual Studio 2012=5
Microsoft Visual Studio 2015=3
Microsoft Visual Studio 2019 (includes 16.0 - 16.8)=16.9
Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9
Microsoft Visual Studio 2013=5
Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11
and 10 more
CVE-2022-35777
Visual Studio Remote Code Execution Vulnerability
Microsoft Visual Studio=2012-update_5
Microsoft Visual Studio=2013-update_5
Microsoft Visual Studio=2015-update3
Microsoft Visual Studio 2017>=15.0<=15.9
Microsoft Visual Studio 2019>=16.0<=16.11
Microsoft Visual Studio 2022=17.0
and 9 more
CVE-2022-34716
.NET Spoofing Vulnerability
redhat/rh-dotnet31-dotnet<0:3.1.422-1.el7_9
redhat/rh-dotnet60-dotnet<0:6.0.108-1.el7_9
redhat/dotnet3.1<0:3.1.422-1.el8_6
redhat/dotnet6.0<0:6.0.108-1.el8_6
redhat/dotnet6.0<0:6.0.108-1.el9_0
Microsoft .NET>=6.0.0<6.0.8
and 65 more
CVE-2022-24513
Visual Studio Elevation of Privilege Vulnerability
Microsoft Visual Studio 2019 for Mac=8.10
Microsoft Visual Studio 2019 (includes 16.0 - 16.8)=16.9
Microsoft Visual Studio 2019 (includes 16.0 – 16.6)=16.7
Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9
Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11
Microsoft Visual Studio 2022 for Mac=17.0
and 6 more
CVE-2021-42277
Microsoft Windows Diagnostics Hub Link Following Privilege Escalation Vulnerability
=16.7
=20H2
=20H2
=20H2
=20H2
=1809
and 46 more
CVE-2021-26434
Microsoft Visual Studio Incorrect Permission Assignment Privilege Escalation Vulnerability
=16.7
=15.9
=16.9
=16.11
=16.4
>=15.0<=15.9
and 4 more
CVE-2021-36952
Microsoft Visual Studio DDS File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
=16.7
=15.9
=16.4
Microsoft Visual Studio 2017>=15.0<=15.9
Microsoft Visual Studio 2019>=16.0<=16.7
Microsoft Visual Studio

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203