cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-36796,https://securityvulnerability.io/vulnerability/CVE-2023-36796,Visual Studio Remote Code Execution Vulnerability,"A vulnerability in Microsoft Visual Studio allows remote attackers to execute arbitrary code on the affected installations. This security flaw can be triggered when a user opens a malicious project file, resulting in malicious code execution within the Visual Studio environment. Users are urged to apply patches and updates from Microsoft to mitigate the risks associated with this vulnerability.",Microsoft,"Microsoft Visual Studio 2022 Version 17.6,Microsoft Visual Studio 2022 Version 17.7,Microsoft Visual Studio 2017 Version 15.9 (includes 15.0 - 15.8),Microsoft Visual Studio 2022 Version 17.2,Microsoft Visual Studio 2019 Version 16.11 (includes 16.0 - 16.10),Microsoft Visual Studio 2022 Version 17.4,Microsoft Visual Studio 2013 Update 5,Microsoft Visual Studio 2015 Update 3,.net 7.0,.net 6.0,Powershell 7.2,Microsoft .net Framework 3.5 And 4.8,Microsoft .net Framework 4.8,Microsoft .net Framework 3.5 And 4.7.2,Microsoft .net Framework 3.5 And 4.6.2/4.7/4.7.1/4.7.2,Microsoft .net Framework 4.6.2/4.7/4.7.1/4.7.2,Microsoft .net Framework 3.5 And 4.8.1,Microsoft .net Framework 4.6.2,Microsoft .net Framework 3.5 And 4.6.2,Microsoft .net Framework 2.0 Service Pack 2,Microsoft .net Framework 3.0 Service Pack 2,Microsoft .net Framework 3.5,Microsoft .net Framework 3.5.1",7.8,HIGH,0.0015999999595806003,false,,false,false,false,,,false,false,,2023-09-12T17:15:00.000Z,0
CVE-2023-24897,https://securityvulnerability.io/vulnerability/CVE-2023-24897,".NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability","A vulnerability exists in the .NET Framework and Visual Studio that could allow an attacker to execute arbitrary code on the target system. This flaw can be exploited if a user opens a specially crafted file that triggers the vulnerability. Successful exploitation may allow an attacker to install programs, view, change, or delete data, or create new accounts with full user rights. It is crucial for users to apply the latest updates provided by Microsoft to mitigate the risks associated with this vulnerability.",Microsoft,"Microsoft Visual Studio 2017 Version 15.9 (includes 15.0 - 15.8),Microsoft Visual Studio 2022 Version 17.2,Microsoft Visual Studio 2019 Version 16.11 (includes 16.0 - 16.10),Microsoft Visual Studio 2022 Version 17.0,Microsoft Visual Studio 2022 Version 17.4,Microsoft Visual Studio 2013 Update 5,Microsoft Visual Studio 2015 Update 3,.net 7.0,.net 6.0,Microsoft Visual Studio 2022 Version 17.6,Powershell 7.2,Microsoft .net Framework 3.5 And 4.8,Microsoft .net Framework 4.8,Microsoft .net Framework 3.5 And 4.7.2,Microsoft .net Framework 3.5 And 4.6.2/4.7/4.7.1/4.7.2,Microsoft .net Framework 4.6.2/4.7/4.7.1/4.7.2,Microsoft .net Framework 3.5 And 4.8.1,Microsoft .net Framework 4.6.2,Microsoft .net Framework 3.5 And 4.6.2",7.8,HIGH,0.0017300000181421638,false,,true,false,false,,,false,false,,2023-06-14T15:15:00.000Z,0
CVE-2023-33139,https://securityvulnerability.io/vulnerability/CVE-2023-33139,Visual Studio Information Disclosure Vulnerability,Visual Studio Information Disclosure Vulnerability,Microsoft,"Microsoft Visual Studio 2017 Version 15.9 (includes 15.0 - 15.8),Microsoft Visual Studio 2022 Version 17.2,Microsoft Visual Studio 2019 Version 16.11 (includes 16.0 - 16.10),Microsoft Visual Studio 2022 Version 17.0,Microsoft Visual Studio 2022 Version 17.4,Microsoft Visual Studio 2013 Update 5,Microsoft Visual Studio 2015 Update 3,Microsoft Visual Studio 2022 Version 17.6",5.5,MEDIUM,0.0006900000153109431,false,,false,false,false,,,false,false,,2023-06-14T00:15:00.000Z,0
CVE-2023-21808,https://securityvulnerability.io/vulnerability/CVE-2023-21808,.NET and Visual Studio Remote Code Execution Vulnerability,"This vulnerability in Microsoft .NET and Visual Studio allows an attacker to execute arbitrary code remotely. Users and developers may be exposed to risks through malicious input or compromised network environments, necessitating prompt attention to security updates and patches to mitigate potential exploits.",Microsoft,"Microsoft Visual Studio 2019 Version 16.11 (includes 16.0 - 16.10),Microsoft Visual Studio 2022 Version 17.0,Microsoft Visual Studio 2017 Version 15.9 (includes 15.0 - 15.8),Microsoft Visual Studio 2022 Version 17.4,Microsoft Visual Studio 2022 Version 17.2,Microsoft Visual Studio 2015 Update 3,Microsoft Visual Studio 2013 Update 5,.net 7.0,.net 6.0,Powershell 7.2,Microsoft .net Framework 3.5 And 4.8,Microsoft .net Framework 3.5 And 4.7.2,Microsoft .net Framework 4.6.2/4.7/4.7.1/4.7.2,Microsoft .net Framework 4.8,Microsoft .net Framework 3.5 And 4.8.1,Microsoft .net Framework 4.6.2,Microsoft .net Framework 3.5 And 4.6.2",7.8,HIGH,0.0028699999675154686,false,,false,false,false,,,false,false,,2023-02-14T21:15:00.000Z,0
CVE-2023-21815,https://securityvulnerability.io/vulnerability/CVE-2023-21815,Visual Studio Remote Code Execution Vulnerability,"A remote code execution vulnerability exists in Microsoft Visual Studio that could allow an attacker to execute arbitrary code on a target system. This issue arises due to improper handling of objects in memory. An attacker who successfully exploited this vulnerability could gain the same user rights as the logged-in user. To mitigate this issue, it is essential for users to apply the latest security updates provided by Microsoft to safeguard their systems against potential attacks.",Microsoft,"Microsoft Visual Studio 2017 Version 15.9 (includes 15.0 - 15.8),Microsoft Visual Studio 2022 Version 17.2,Microsoft Visual Studio 2019 Version 16.11 (includes 16.0 - 16.10),Microsoft Visual Studio 2022 Version 17.0,Microsoft Visual Studio 2013 Update 5,Microsoft Visual Studio 2015 Update 3,Microsoft Visual Studio 2022 Version 17.4",7.8,HIGH,0.0028699999675154686,false,,false,false,false,,,false,false,,2023-02-14T21:15:00.000Z,0
CVE-2023-23381,https://securityvulnerability.io/vulnerability/CVE-2023-23381,Visual Studio Remote Code Execution Vulnerability,"A remote code execution vulnerability exists in Visual Studio, allowing an attacker to execute arbitrary code on an affected system. This vulnerability arises due to improper handling of input data. When exploited, it could lead to unauthorized actions or access to sensitive data. Users are urged to update their Visual Studio installations to mitigate potential risks and safeguard their development environments.",Microsoft,"Microsoft Visual Studio 2019 Version 16.11 (includes 16.0 - 16.10),Microsoft Visual Studio 2022 Version 17.0,Microsoft Visual Studio 2022 Version 17.2,Microsoft Visual Studio 2017 Version 15.9 (includes 15.0 - 15.8),Microsoft Visual Studio 2022 Version 17.4,Microsoft Visual Studio 2013 Update 5,Microsoft Visual Studio 2015 Update 3",7.8,HIGH,0.0028699999675154686,false,,false,false,false,,,false,false,,2023-02-14T21:15:00.000Z,0
CVE-2022-35827,https://securityvulnerability.io/vulnerability/CVE-2022-35827,Visual Studio Remote Code Execution Vulnerability,Visual Studio Remote Code Execution Vulnerability,Microsoft,"Microsoft Visual Studio 2022 Version 17.2,Microsoft Visual Studio 2022 Version 17.0,Microsoft Visual Studio 2017 Version 15.9 (includes 15.0 - 15.8),Microsoft Visual Studio 2015 Update 3,Microsoft Visual Studio 2019 Version 16.11 (includes 16.0 - 16.10),Microsoft Visual Studio 2019 Version 16.9 (includes 16.0 - 16.8),Microsoft Visual Studio 2013 Update 5,Microsoft Visual Studio 2012 Update 5",8.8,HIGH,0.010529999621212482,false,,false,false,false,,,false,false,,2022-08-09T20:12:50.000Z,0
CVE-2022-35826,https://securityvulnerability.io/vulnerability/CVE-2022-35826,Visual Studio Remote Code Execution Vulnerability,Visual Studio Remote Code Execution Vulnerability,Microsoft,"Microsoft Visual Studio 2017 Version 15.9 (includes 15.0 - 15.8),Microsoft Visual Studio 2019 Version 16.9 (includes 16.0 - 16.8),Microsoft Visual Studio 2019 Version 16.11 (includes 16.0 - 16.10),Microsoft Visual Studio 2022 Version 17.0,Microsoft Visual Studio 2012 Update 5,Microsoft Visual Studio 2013 Update 5,Microsoft Visual Studio 2015 Update 3,Microsoft Visual Studio 2022 Version 17.2",8.8,HIGH,0.010529999621212482,false,,false,false,false,,,false,false,,2022-08-09T20:12:36.000Z,0
CVE-2022-35825,https://securityvulnerability.io/vulnerability/CVE-2022-35825,Visual Studio Remote Code Execution Vulnerability,Visual Studio Remote Code Execution Vulnerability,Microsoft,"Microsoft Visual Studio 2017 Version 15.9 (includes 15.0 - 15.8),Microsoft Visual Studio 2019 Version 16.9 (includes 16.0 - 16.8),Microsoft Visual Studio 2019 Version 16.11 (includes 16.0 - 16.10),Microsoft Visual Studio 2022 Version 17.0,Microsoft Visual Studio 2012 Update 5,Microsoft Visual Studio 2013 Update 5,Microsoft Visual Studio 2015 Update 3,Microsoft Visual Studio 2022 Version 17.2",8.8,HIGH,0.010759999975562096,false,,false,false,false,,,false,false,,2022-08-09T20:12:22.000Z,0
CVE-2022-35777,https://securityvulnerability.io/vulnerability/CVE-2022-35777,Visual Studio Remote Code Execution Vulnerability,Visual Studio Remote Code Execution Vulnerability,Microsoft,"Microsoft Visual Studio 2017 Version 15.9 (includes 15.0 - 15.8),Microsoft Visual Studio 2019 Version 16.9 (includes 16.0 - 16.8),Microsoft Visual Studio 2019 Version 16.11 (includes 16.0 - 16.10),Microsoft Visual Studio 2022 Version 17.0,Microsoft Visual Studio 2012 Update 5,Microsoft Visual Studio 2013 Update 5,Microsoft Visual Studio 2015 Update 3,Microsoft Visual Studio 2022 Version 17.2",8.8,HIGH,0.010529999621212482,false,,false,false,false,,,false,false,,2022-08-09T19:59:23.000Z,0
CVE-2020-16874,https://securityvulnerability.io/vulnerability/CVE-2020-16874,Visual Studio Remote Code Execution Vulnerability,"<p>A remote code execution vulnerability exists in Visual Studio when it improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.</p>
<p>To exploit the vulnerability, an attacker would have to convince a user to open a specially crafted file with an affected version of Visual Studio.</p>
<p>The update addresses the vulnerability by correcting how Visual Studio handles objects in memory.</p>
",Microsoft,"Microsoft Visual Studio 2019 Version 16.7 (includes 16.0 – 16.6),Microsoft Visual Studio 2017 Version 15.9 (includes 15.0 - 15.8),Microsoft Visual Studio 2019 Version 16.0,Microsoft Visual Studio 2019 Version 16.4 (includes 16.0 - 16.3),Microsoft Visual Studio 2012 Update 5,Microsoft Visual Studio 2013 Update 5,Microsoft Visual Studio 2015 Update 3",7.8,HIGH,0.02816000021994114,false,,false,false,false,,,false,false,,2020-09-11T17:08:47.000Z,0
CVE-2020-16856,https://securityvulnerability.io/vulnerability/CVE-2020-16856,Visual Studio Remote Code Execution Vulnerability,"<p>A remote code execution vulnerability exists in Visual Studio when it improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.</p>
<p>To exploit the vulnerability, an attacker would have to convince a user to open a specially crafted file with an affected version of Visual Studio.</p>
<p>The update addresses the vulnerability by correcting how Visual Studio handles objects in memory.</p>
",Microsoft,"Microsoft Visual Studio 2019 Version 16.7 (includes 16.0 – 16.6),Microsoft Visual Studio 2017 Version 15.9 (includes 15.0 - 15.8),Microsoft Visual Studio 2019 Version 16.0,Microsoft Visual Studio 2019 Version 16.4 (includes 16.0 - 16.3),Microsoft Visual Studio 2012 Update 5,Microsoft Visual Studio 2013 Update 5,Microsoft Visual Studio 2015 Update 3",7.8,HIGH,0.02816000021994114,false,,false,false,false,,,false,false,,2020-09-11T17:08:40.000Z,0