Kaspersky ID:
KLA91143
Data de detecção:
07/14/2026
Atualizado:
07/16/2026

Descrição

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, execute arbitrary code, gain privileges, obtain sensitive information, spoof user interface.

Below is a complete list of vulnerabilities:

  1. A security feature bypass vulnerability in GitHub Copilot and Visual Studio Code can be exploited remotely to bypass security restrictions.
  2. A security feature bypass vulnerability in Visual Studio Code can be exploited remotely to bypass security restrictions.
  3. A denial of service vulnerability in OData for ASP.NET and ASP.NET Core can be exploited remotely to cause denial of service.
  4. An information disclosure vulnerability in GitHub Copilot and Visual Studio Code can be exploited remotely to obtain sensitive information.
  5. An elevation of privilege vulnerability in ASP.NET Core can be exploited remotely to gain privileges.
  6. A denial of service vulnerability in .NET can be exploited remotely to cause denial of service.
  7. A security feature bypass vulnerability in .NET can be exploited remotely to bypass security restrictions.
  8. A remote code execution vulnerability in Visual Studio can be exploited remotely to execute arbitrary code.
  9. A remote code execution vulnerability in Visual Studio Code can be exploited remotely to execute arbitrary code.
  10. A denial of service vulnerability in .NET Framework can be exploited remotely to cause denial of service.
  11. A tampering vulnerability in .NET can be exploited remotely to spoof user interface.
  12. A remote code execution vulnerability in .NET Framework can be exploited remotely to execute arbitrary code.
  13. A remote code execution vulnerability in .NET can be exploited remotely to execute arbitrary code.
  14. An elevation of privilege vulnerability in .NET Framework can be exploited remotely to gain privileges.
  15. A spoofing vulnerability in .NET can be exploited remotely to spoof user interface.
  16. A denial of service vulnerability in ASP.NET Core can be exploited remotely to cause denial of service.

Comunicados originais

Lista de CVE

  • CVE-2026-41109
    unknown
  • CVE-2026-45496
    unknown
  • CVE-2026-45646
    unknown
  • CVE-2026-47282
    high
  • CVE-2026-50506
    unknown
  • CVE-2026-50520
    unknown
  • CVE-2026-56170
    unknown
  • CVE-2026-57101
    unknown
  • CVE-2026-57102
    unknown
  • CVE-2026-57108
    unknown
  • CVE-2026-47300
    critical
  • CVE-2026-47302
    unknown
  • CVE-2026-47303
    unknown
  • CVE-2026-47304
    critical
  • CVE-2026-47305
    critical
  • CVE-2026-50524
    unknown
  • CVE-2026-50525
    critical
  • CVE-2026-50526
    high
  • CVE-2026-50527
    unknown
  • CVE-2026-50528
    critical
  • CVE-2026-50646
    critical
  • CVE-2026-50648
    unknown
  • CVE-2026-50649
    critical
  • CVE-2026-50650
    critical
  • CVE-2026-50651
    unknown
  • CVE-2026-50659
    high

Lista de KB

Saiba mais

Descubra as estatísticas das vulnerabilidades que se espalham em sua região statistics.securelist.com

Encontrou uma imprecisão na descrição desta vulnerabilidade? Avise-nos!
Kaspersky Next:
cibersegurança redefinida
Saber mais
Novo Kaspersky!
Sua vida dgital merece proteção completa!
Saber mais
Do you want to save your changes?
Your message has been sent successfully.