Description
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to gain privileges, cause denial of service, bypass security restrictions, spoof user interface.
Below is a complete list of vulnerabilities:
- An elevation of privilege vulnerability in .NET, .NET Framework, and Visual Studio can be exploited remotely to gain privileges.
- A denial of service vulnerability in Visual Studio can be exploited remotely to cause denial of service.
- A security feature bypass vulnerability in ASP.NET Core can be exploited remotely to bypass security restrictions.
- A denial of service vulnerability in ASP.NET Core can be exploited remotely to cause denial of service.
- A spoofing vulnerability in Visual Studio Code Jupyter Extension can be exploited remotely to spoof user interface.
- A security feature bypass vulnerability in ASP.NET can be exploited remotely to bypass security restrictions.
Original advisories
Related products
CVE list
- CVE-2023-36558 high
- CVE-2023-36049 critical
- CVE-2023-36042 high
- CVE-2023-36038 critical
- CVE-2023-36018 critical
- CVE-2023-36560 critical
KB list
- 5032199
- 5032197
- 5032343
- 5032007
- 5032337
- 5032186
- 5032340
- 5032004
- 5032338
- 5032344
- 5032341
- 5032342
- 5032339
- 5032336
- 5032883
- 5032884
- 5031989
- 5032185
- 5034274
- 5034276
- 5033920
- 5034272
- 5034275
- 5033917
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!