Skip to main content

Visual Studio 2019 CVE-2023-36759

MEDIUM
Untrusted Pointer Dereference (CWE-822)
2023-09-12 secure@microsoft.com
6.7
CVSS 3.1 · Vendor: microsoft
Share

Severity by source

Vendor (microsoft) PRIMARY
6.7 MEDIUM
AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

Primary rating from Vendor (microsoft) · only source for this CVE.

CVSS VectorVendor: microsoft

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
High
Privileges Required
Low
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

1
CVE Published
Sep 12, 2023 - 17:15 cve.org
MEDIUM 6.7

DescriptionCVE.org

Visual Studio Elevation of Privilege Vulnerability

AnalysisAI

Visual Studio Elevation of Privilege Vulnerability. Rated medium severity (CVSS 6.7).

Technical ContextAI

This vulnerability is classified under CWE-822. Affected products include: Microsoft Visual Studio 2019, Microsoft Visual Studio 2022.

RemediationAI

A vendor patch is available. Apply the latest security update as soon as possible. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

CVE-2020-1147 HIGH POC
7.8 Jul 14

A remote code execution vulnerability exists in .NET Framework, Microsoft SharePoint, and Visual Studio when the softwar

CVE-2020-26870 MEDIUM POC
6.1 Oct 07

Cure53 DOMPurify before 2.0.17 allows mutation XSS. Rated medium severity (CVSS 6.1), this vulnerability is remotely exp

CVE-2025-49739 HIGH
8.8 Jul 08

Improper link resolution before file access ('link following') in Visual Studio allows an unauthorized attacker to eleva

CVE-2024-28938 HIGH
8.8 Apr 09

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerabi

CVE-2024-28937 HIGH
8.8 Apr 09

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerabi

CVE-2024-28936 HIGH
8.8 Apr 09

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerabi

CVE-2024-28935 HIGH
8.8 Apr 09

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerabi

CVE-2024-28934 HIGH
8.8 Apr 09

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerabi

CVE-2024-28933 HIGH
8.8 Apr 09

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerabi

CVE-2024-28932 HIGH
8.8 Apr 09

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerabi

CVE-2024-28931 HIGH
8.8 Apr 09

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerabi

CVE-2024-28930 HIGH
8.8 Apr 09

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerabi

Share

CVE-2023-36759 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy