Description
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information, execute arbitrary code, spoof user interface.
Below is a complete list of vulnerabilities:
- A security feature bypass vulnerability in Visual Studio Code can be exploited remotely to bypass security restrictions.
- An information disclosure vulnerability in Visual Studio can be exploited remotely to obtain sensitive information.
- A remote code execution vulnerability in Visual Studio can be exploited remotely to execute arbitrary code.
- A spoofing vulnerability in .NET, Visual Studio, and Build Tools for Visual Studio can be exploited remotely to spoof user interface.
Original advisories
Related products
CVE list
- CVE-2025-21264 high
- CVE-2025-32702 critical
- CVE-2025-32703 high
- CVE-2025-26646 critical
KB list
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!