Page 5 of 34 results (0.010 seconds)

CVSS: 6.7EPSS: 0%CPEs: 5EXPL: 0

Visual Studio Elevation of Privilege Vulnerability Vulnerabilidad de Elevación de Privilegios en Visual Studio • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36759 • CWE-822: Untrusted Pointer Dereference •

CVSS: 7.5EPSS: 1%CPEs: 8EXPL: 0

.NET and Visual Studio Denial of Service Vulnerability An uncontrolled resource consumption vulnerability was found in the Kestrel component of the dotNET. When detecting a potentially malicious client, Kestrel will sometimes fail to disconnect it, resulting in denial of service. Microsoft .NET Core and Visual Studio contain an unspecified vulnerability that allows for denial-of-service (DoS). • https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CL2L4WE5QRT7WEXANYXSKSU43APC5N2V https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NWVZFKTLNMNKPZ755EMRYIA6GHFOWGKY https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-38180 https://access.redhat.com/security/cve/CVE-2023-38180 https://bugzilla.redhat.com/show_bug.cgi?id=2228621 • CWE-400: Uncontrolled Resource Consumption •

CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0

ASP.NET Core SignalR and Visual Studio Information Disclosure Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35391 •

CVSS: 7.8EPSS: 2%CPEs: 5EXPL: 0

.NET and Visual Studio Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de .NET y Visual Studio A vulnerability was found in dotnet. This issue exists when some dotnet commands are used in directories with weaker permissions, which can result in remote code execution. • https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CL2L4WE5QRT7WEXANYXSKSU43APC5N2V https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NWVZFKTLNMNKPZ755EMRYIA6GHFOWGKY https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35390 https://access.redhat.com/security/cve/CVE-2023-35390 https://bugzilla.redhat.com/show_bug.cgi?id=2228622 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •

CVSS: 8.1EPSS: 0%CPEs: 12EXPL: 0

Visual Studio Tools for Office Runtime Spoofing Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36897 • CWE-20: Improper Input Validation •