Multiple vulnerabilities in Microsoft Developer Tools

Descrição

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information, execute arbitrary code, spoof user interface.

Below is a complete list of vulnerabilities:

1. A security feature bypass vulnerability in Visual Studio Code can be exploited remotely to bypass security restrictions.
2. An information disclosure vulnerability in Visual Studio can be exploited remotely to obtain sensitive information.
3. A remote code execution vulnerability in Visual Studio can be exploited remotely to execute arbitrary code.
4. A spoofing vulnerability in .NET, Visual Studio, and Build Tools for Visual Studio can be exploited remotely to spoof user interface.

Comunicados originais

• CVE-2025-21264

• CVE-2025-32703
• CVE-2025-32702
• CVE-2025-26646

Produtos relacionados

• Microsoft-Visual-Studio
• Microsoft-Windows
• .NET

Lista de CVE

• CVE-2025-21264
  high
• CVE-2025-32702
  critical
• CVE-2025-32703
  high
• CVE-2025-26646
  critical

Lista de KB

• 5059200
• 5059201

Saiba mais

Descubra as estatísticas das vulnerabilidades que se espalham em sua região statistics.securelist.com