Latest microsoft visual studio 2022 Vulnerabilities

● CVE-2024-28935

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft Visual Studio 2022=17.9

Microsoft Visual Studio 2022=17.4

Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11

Microsoft ODBC Driver 18 for SQL Server on Windows

Microsoft ODBC Driver 17 for SQL Server on MacOS

Microsoft ODBC Driver 17 for SQL Server on Windows

and 9 more

● CVE-2024-28937

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft ODBC Driver 18 for SQL Server on Windows

Microsoft ODBC Driver 18 for SQL Server on Linux

Microsoft SQL Server 2019

Microsoft ODBC Driver 18 for SQL Server on MacOS

Microsoft Visual Studio 2022=17.6

Microsoft ODBC Driver 17 for SQL Server on Windows

and 8 more

● CVE-2024-21409

.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

Microsoft .NET Framework=3.5=4.8

Microsoft .NET Framework=3.5=4.7.2

Microsoft .NET Framework=3.5=4.8.1

Microsoft Visual Studio 2022=17.8

Microsoft .NET Framework=3.5=4.7.2

and 30 more

● CVE-2024-28936

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft ODBC Driver 17 for SQL Server on Linux

Microsoft Visual Studio 2022=17.6

Microsoft ODBC Driver 18 for SQL Server on Linux

Microsoft SQL Server 2019

Microsoft Visual Studio 2022=17.8

Microsoft ODBC Driver 18 for SQL Server on Windows

and 7 more

● CVE-2024-28933

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft SQL Server 2019

Microsoft ODBC Driver 18 for SQL Server on Linux

Microsoft Visual Studio 2022=17.6

Microsoft ODBC Driver 18 for SQL Server on Windows

Microsoft ODBC Driver 17 for SQL Server on MacOS

Microsoft ODBC Driver 17 for SQL Server on Linux

and 9 more

● CVE-2024-28938

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft ODBC Driver 18 for SQL Server on Linux

Microsoft ODBC Driver 18 for SQL Server on MacOS

Microsoft SQL Server 2019

Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11

Microsoft Visual Studio 2022=17.8

Microsoft ODBC Driver 18 for SQL Server on Windows

and 7 more

● CVE-2024-28932

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft Visual Studio 2022=17.6

Microsoft ODBC Driver 18 for SQL Server on MacOS

Microsoft ODBC Driver 17 for SQL Server on Linux

Microsoft ODBC Driver 18 for SQL Server on Linux

Microsoft ODBC Driver 17 for SQL Server on MacOS

Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11

and 7 more

● CVE-2024-28934

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft ODBC Driver 18 for SQL Server on Windows

Microsoft SQL Server 2019

Microsoft ODBC Driver 17 for SQL Server on MacOS

Microsoft Visual Studio 2022=17.9

Microsoft ODBC Driver 18 for SQL Server on Linux

Microsoft ODBC Driver 17 for SQL Server on Linux

and 8 more

● CVE-2024-28929

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft SQL Server 2019

Microsoft Visual Studio 2022=17.6

Microsoft ODBC Driver 18 for SQL Server on Windows

Microsoft ODBC Driver 17 for SQL Server on Windows

Microsoft ODBC Driver 17 for SQL Server on MacOS

Microsoft Visual Studio 2022=17.9

and 7 more

● CVE-2024-28931

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft SQL Server 2019

Microsoft ODBC Driver 17 for SQL Server on Linux

Microsoft Visual Studio 2022=17.8

Microsoft Visual Studio 2022=17.6

Microsoft ODBC Driver 18 for SQL Server on Linux

Microsoft ODBC Driver 17 for SQL Server on MacOS

and 7 more

● CVE-2024-28930

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft SQL Server 2019

Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11

Microsoft Visual Studio 2022=17.9

Microsoft Visual Studio 2022=17.4

Microsoft ODBC Driver 17 for SQL Server on Windows

Microsoft ODBC Driver 17 for SQL Server on Linux

and 7 more

● CVE-2024-26190

Microsoft QUIC Denial of Service Vulnerability

Microsoft Windows Server 2022

Microsoft Visual Studio 2022=17.8

Microsoft Windows 11=22H2

Microsoft Windows 11=23H2

Microsoft Windows Server 2022, 23H2 Edition

Microsoft .NET 7.0

and 9 more

● CVE-2024-21392

.NET and Visual Studio Denial of Service Vulnerability

Microsoft Visual Studio 2022=17.8

Microsoft Visual Studio 2022=17.4

Microsoft .NET 7.0

Microsoft .NET 8.0

nuget/Microsoft.NETCore.App.Runtime.win-x64>=7.0.0-preview.1.22076.8<=7.0.16

nuget/Microsoft.NETCore.App.Runtime.win-x86>=7.0.0-preview.1.22076.8<=7.0.16

and 32 more

● CVE-2024-21404

.NET Denial of Service Vulnerability

Microsoft Visual Studio 2022=17.8

Microsoft .NET 6.0

Microsoft .NET 8.0

Microsoft Visual Studio 2022=17.6

Microsoft .NET 7.0

ubuntu/dotnet6<6.0.127-0ubuntu1~22.04.1

and 14 more

● CVE-2024-21386

.NET Denial of Service Vulnerability

Microsoft Visual Studio 2022=17.8

Microsoft Visual Studio 2022=17.6

Microsoft ASP.NET Core=6.0

Microsoft ASP.NET Core=8.0

Microsoft ASP.NET Core=7.0

nuget/Microsoft.AspNetCore.App.Runtime.win-x86>=8.0.0<=8.0.1

and 50 more

● CVE-2024-20656

Visual Studio Elevation of Privilege Vulnerability

Microsoft Visual Studio 2022=17.2

Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9

Microsoft Visual Studio 2015=3

Microsoft Visual Studio 2022=17.4

Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11

Microsoft Visual Studio=2015-update3

and 5 more

● CVE-2024-21319

Microsoft Identity Denial of service vulnerability

Microsoft Identity Model v7.0.0

Microsoft .NET 8.0

Microsoft Identity Model v6.0.0

Microsoft Identity Model v5.0.0 for Nuget

Microsoft Identity Model v5.0.0

Microsoft Identity Model v7.0.0 for Nuget

and 33 more

● CVE-2024-0057

NET, .NET Framework, and Visual Studio Security Feature Bypass Vulnerability

Microsoft .NET Framework=3.5=4.8.1

Microsoft .NET Framework=2.0

Microsoft .NET Framework=3.5=4.8.1

Microsoft .NET Framework=4.8

Microsoft .NET Framework=3.5=4.7.2

and 128 more

● CVE-2024-0056

Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability

Microsoft .NET Framework=3.5=4.7.2

Microsoft .NET Framework=3.5=4.8.1

Microsoft .NET Framework=4.8

Microsoft .NET Framework=3.5=4.8.1

and 109 more

● CVE-2023-36038

ASP.NET Core Denial of Service Vulnerability

Microsoft Visual Studio 2022=17.4

Microsoft Visual Studio 2022=17.2

Microsoft ASP.NET Core=8.0

Microsoft Visual Studio 2022=17.7

Microsoft .NET 8.0

Microsoft Visual Studio 2022>=17.2<17.2.22

and 13 more

● CVE-2023-36042

Visual Studio Denial of Service Vulnerability

Microsoft Visual Studio 2022=17.2

Microsoft Visual Studio 2022=17.4

Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11

Microsoft Visual Studio 2022=17.7

Microsoft .NET Framework=3.5=4.8.1

and 9 more

● CVE-2023-36049

.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability

Microsoft .NET Framework=3.5=4.8.1

Microsoft .NET Framework=4.6.2

Microsoft .NET Framework=3.5.1

Microsoft .NET Framework=3.5=4.7.2

Microsoft .NET Framework=3.5=4.8.1

Microsoft .NET Framework=4.8

and 73 more

● CVE-2023-36558

ASP.NET Core - Security Feature Bypass Vulnerability

Microsoft ASP.NET Core=7.0

Microsoft ASP.NET Core=8.0

Microsoft .NET 8.0

nuget/Microsoft.AspNetCore.Components>=6.0.0<=6.0.24

nuget/Microsoft.AspNetCore.Components>=7.0.0<=7.0.13

nuget/Microsoft.AspNetCore.Components=8.0.0-rc.2.23480.2

and 18 more

● CVE-2023-38171

Microsoft QUIC Denial of Service Vulnerability

Microsoft PowerShell 7.3

nuget/Microsoft.Native.Quic.MsQuic.OpenSSL<2.2.3

nuget/Microsoft.Native.Quic.MsQuic.Schannel<2.2.3

Microsoft Windows Server 2022

Microsoft Windows 11=22H2

and 14 more

● CVE-2023-44487

- Rapid Reset HTTP/2 vulnerability

Microsoft Windows 11=21H2

Microsoft Windows Server 2022

Microsoft Windows 11=22H2

and 556 more

● CVE-2023-36793

Visual Studio Remote Code Execution Vulnerability

Microsoft PowerShell 7.2

Microsoft .NET Framework=3.5=4.8.1

Microsoft .NET Framework=3.5=4.8

Microsoft .NET Framework=3.5=4.8.1

Microsoft .NET Framework=3.5=4.8

and 66 more

● CVE-2023-36792

Visual Studio Remote Code Execution Vulnerability

Microsoft PowerShell 7.2

Microsoft .NET Framework=3.5=4.8.1

Microsoft .NET Framework=2.0

Microsoft .NET Framework=3.5=4.8.1

Microsoft .NET Framework=4.8

and 67 more

● CVE-2023-36758

Visual Studio Elevation of Privilege Vulnerability

Microsoft Visual Studio 2022=17.7

=17.7

Microsoft Visual Studio 2022>=17.7<=17.7.4

● CVE-2023-36796

Visual Studio Remote Code Execution Vulnerability

Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9

Microsoft PowerShell 7.2

Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11

Microsoft .NET Framework=3.0

Microsoft .NET Framework=4.8

Microsoft .NET Framework=3.5=4.8

and 68 more

● CVE-2023-36759

Visual Studio Elevation of Privilege Vulnerability

Microsoft Visual Studio 2022=17.2

Microsoft Visual Studio 2022=17.4

Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11

Microsoft Visual Studio 2022=17.7

Microsoft Visual Studio 2019>=16.0<16.11.30

Microsoft Visual Studio 2022>=17.2.0<17.2.19

and 3 more

● CVE-2023-36794

Visual Studio Remote Code Execution Vulnerability

Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9

Microsoft PowerShell 7.2

Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11

Microsoft .NET Framework=3.5

Microsoft .NET Framework=3.0

Microsoft .NET Framework=3.5=4.8

and 67 more

● CVE-2023-36799

.NET Core and Visual Studio Denial of Service Vulnerability

nuget/Microsoft.NETCore.App.Runtime.linux-musl-arm64>=6.0.0<=6.0.21

nuget/Microsoft.NETCore.App.Runtime.linux-arm64>=6.0.0<=6.0.21

nuget/Microsoft.NETCore.App.Runtime.linux-arm>=6.0.0<=6.0.21

nuget/Microsoft.NETCore.App.Runtime.linux-musl-arm>=6.0.0<=6.0.21

nuget/Microsoft.NETCore.App.Runtime.linux-musl-x64>=6.0.0<=6.0.21

nuget/Microsoft.NETCore.App.Runtime.linux-x64>=6.0.0<=6.0.21

and 30 more

● CVE-2023-35391

ASP.NET Core SignalR and Visual Studio Information Disclosure Vulnerability

Microsoft ASP.NET Core=2.1

Microsoft .NET 7.0

Microsoft .NET 6.0

=17.2

=2.1

=17.4

and 11 more

● CVE-2023-36897

Visual Studio Tools for Office Runtime Spoofing Vulnerability

Microsoft Visual Studio 2010 Tools for Office Runtime

Microsoft Office 2019 for 64-bit editions

Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11

Microsoft 365 Apps for Enterprise

Microsoft Office 2019 for 32-bit editions

and 17 more

● CVE-2023-38178

.NET Core and Visual Studio Denial of Service Vulnerability

nuget/Microsoft.NetCore.App.Runtime.win-x86>=7.0.0<=7.0.9

nuget/Microsoft.NetCore.App.Runtime.win-x64>=7.0.0<=7.0.9

nuget/Microsoft.NetCore.App.Runtime.win-arm64>=7.0.0<=7.0.9

nuget/Microsoft.NetCore.App.Runtime.win-arm>=7.0.0<=7.0.9

nuget/Microsoft.AspNetCore.App.Runtime.win-x86>=7.0.0<=7.0.9

nuget/Microsoft.AspNetCore.App.Runtime.win-x64>=7.0.0<=7.0.9

and 17 more

● CVE-2023-35390

.NET and Visual Studio Remote Code Execution Vulnerability

nuget/Microsoft.NET.Build.Containers<=7.0.306

Microsoft .NET 7.0

Microsoft .NET 6.0

Microsoft Visual Studio 2022=17.2

Microsoft Visual Studio 2022=17.4

Microsoft .NET>=6.0.0<6.0.21

and 14 more

● CVE-2023-38180

Microsoft .NET Core and Visual Studio Denial-of-Service Vulnerability

Microsoft .NET Core and Visual Studio

nuget/Microsoft.AspNetCore.Server.Kestrel.Transport.Sockets<=2.1.39

nuget/Microsoft.AspNetCore.Server.Kestrel.Transport.Libuv<=2.1.39

nuget/Microsoft.AspNetCore.App.Runtime.win-x86>=6.0.0<=6.0.20

nuget/Microsoft.AspNetCore.App.Runtime.win-x64>=6.0.0<=6.0.20

nuget/Microsoft.AspNetCore.App.Runtime.win-arm64>=6.0.0<=6.0.20

and 27 more

● CVE-2023-33127

.NET and Visual Studio Elevation of Privilege Vulnerability

Microsoft PowerShell 7.3

Microsoft PowerShell 7.2

Microsoft Visual Studio 2022=17.6

Microsoft Visual Studio 2022=17.2

Microsoft Visual Studio 2022=17.0

Microsoft Visual Studio 2022=17.3

and 15 more

● CVE-2023-33170

ASP.NET and Visual Studio Security Feature Bypass Vulnerability

redhat/dotnet<6.0.20

redhat/dotnet<7.0.9

Microsoft Visual Studio 2022=17.2

Microsoft .NET 6.0

=17.2

=17.4

and 46 more

● CVE-2023-32027

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft Visual Studio 2022=17.2

Microsoft Visual Studio 2022=17.4

Microsoft SQL Server 2019 (CU 21)

Microsoft SQL Server 2022 (CU 5)

Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11

Microsoft ODBC Driver 17 for SQL Server on Windows

and 14 more

● CVE-2023-32026

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft Visual Studio 2022=17.2

Microsoft Visual Studio 2022=17.4

Microsoft SQL Server 2019 (CU 21)

Microsoft SQL Server 2022 (CU 5)

Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11

Microsoft ODBC Driver 17 for SQL Server on Windows

and 14 more

● CVE-2023-32028

Microsoft SQL OLE DB Remote Code Execution Vulnerability

Microsoft Visual Studio 2022=17.2

Microsoft Visual Studio 2022=17.4

Microsoft OLE DB Driver 19 for SQL Server

Microsoft OLE DB Driver 18 for SQL Server

Microsoft SQL Server 2019 (CU 21)

Microsoft SQL Server 2022 (CU 5)

and 6 more

● CVE-2023-29356

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft Visual Studio 2022=17.2

Microsoft Visual Studio 2022=17.4

Microsoft SQL Server 2019 (CU 21)

Microsoft SQL Server 2022 (CU 5)

Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11

Microsoft ODBC Driver 17 for SQL Server on Windows

and 14 more

● CVE-2023-32025

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft Visual Studio 2022=17.2

Microsoft Visual Studio 2022=17.4

Microsoft SQL Server 2019 (CU 21)

Microsoft SQL Server 2022 (CU 5)

Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11

Microsoft ODBC Driver 17 for SQL Server on Windows

and 14 more

● CVE-2023-29349

Microsoft ODBC and OLE DB Remote Code Execution Vulnerability

Microsoft Visual Studio 2022=17.2

Microsoft Visual Studio 2022=17.4

Microsoft OLE DB Driver 19 for SQL Server

Microsoft OLE DB Driver 18 for SQL Server

Microsoft SQL Server 2019 (CU 21)

Microsoft SQL Server 2022 (CU 5)

and 18 more

● CVE-2023-33135

.NET and Visual Studio Elevation of Privilege Vulnerability

Microsoft Visual Studio 2022=17.0

Microsoft Visual Studio 2022=17.4

Microsoft Visual Studio 2022=17.2

Microsoft .NET 6.0

Microsoft .NET 7.0

Microsoft .NET>=6.0.0<6.0.18

and 5 more

● CVE-2023-24895

.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

Microsoft PowerShell 7.3

Microsoft .NET Framework and 4.6.2=3.5

Microsoft PowerShell 7.2

Microsoft .NET Framework=3.5=4.8

Microsoft .NET Framework=4.6.2=4.7=4.7.1=4.7.2

Microsoft .NET Framework=3.5=4.8.1

and 74 more

● CVE-2023-24897

.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9

Microsoft Visual Studio 2013=5

Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11

Microsoft Visual Studio 2015=3

Microsoft PowerShell 7.2

Microsoft .NET Framework and 4.6.2=3.5

and 76 more

● CVE-2023-33126

.NET and Visual Studio Remote Code Execution Vulnerability

Microsoft PowerShell 7.2

Microsoft Visual Studio 2022=17.0

Microsoft Visual Studio 2022=17.2

Microsoft Visual Studio 2022=17.6

Microsoft .NET 6.0

Microsoft .NET 7.0

and 14 more

● CVE-2023-33139

Visual Studio Information Disclosure Vulnerability

Microsoft Visual Studio 2017 (includes 15.0 - 15.8)=15.9

Microsoft Visual Studio 2013=5

Microsoft Visual Studio 2015=3

Microsoft Visual Studio 2019 (includes 16.0 - 16.10)=16.11

Microsoft Visual Studio 2022=17.6

Microsoft Visual Studio 2022=17.0

and 11 more

Latest microsoft visual studio 2022 Vulnerabilities

Company

Resources

Contact