説明
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, execute arbitrary code, bypass security restrictions, obtain sensitive information, spoof user interface.
Below is a complete list of vulnerabilities:
- Out of bounds memory access vulnerability in Git can be exploited to cause denial of service and gain privileges.
- Remote code execution vulnerability can be exploited remotely to execute arbitrary code.
- An information disclosure vulnerability in Visual Studio can be exploited remotely to obtain sensitive information.
- An elevation of privilege vulnerability in .NET, .NET Framework, and Visual Studio can be exploited remotely to gain privileges.
- A remote code execution vulnerability in Autodesk® FBX® SDK 2020 can be exploited remotely to execute arbitrary code.
- A denial of service vulnerability in .NET and Visual Studio can be exploited remotely to cause denial of service.
- An elevation of privilege vulnerability in .NET and Visual Studio can be exploited remotely to gain privileges.
- A remote code execution vulnerability in .NET, .NET Framework, and Visual Studio can be exploited remotely to execute arbitrary code.
- A remote code execution vulnerability in .NET and Visual Studio can be exploited remotely to execute arbitrary code.
- A spoofing vulnerability in Azure DevOps Server can be exploited remotely to spoof user interface.
- A remote code execution vulnerability in .NET Framework can be exploited remotely to execute arbitrary code.
- A spoofing vulnerability in Visual Studio Code can be exploited remotely to spoof user interface.
- Stack buffer overflow vulnerability in Autodesk® FBX® can be exploited remotely to obtain sensitive information.
- A remote code execution vulnerability in NuGet Client can be exploited remotely to execute arbitrary code.
- A denial of service vulnerability in Yet Another Reverse Proxy (YARP) can be exploited remotely to cause denial of service.
- A denial of service vulnerability in Sysinternals Process Monitor for Windows can be exploited remotely to cause denial of service.
- A denial of service vulnerability in .NET, .NET Framework, and Visual Studio can be exploited remotely to cause denial of service.
- Heap buffer overflow vulnerability in Autodesk® FBX® SDK 2020 can be exploited remotely to execute arbitrary code.
オリジナルアドバイザリー
- CVE-2023-33139
- CVE-2023-24936
- CVE-2023-27909
- CVE-2023-32030
- CVE-2023-32032
- CVE-2023-25815
- CVE-2023-24895
- CVE-2023-24897
- CVE-2023-33126
- CVE-2023-29011
- CVE-2023-21565
- CVE-2023-29326
- CVE-2023-33144
- CVE-2023-33135
- CVE-2023-27910
- CVE-2023-29337
- CVE-2023-33141
- CVE-2023-29353
- CVE-2023-25652
- CVE-2023-29331
- CVE-2023-27911
- CVE-2023-33128
- CVE-2023-21569
- CVE-2023-29012
エクスプロイテーション
Public exploits exist for this vulnerability.
関連製品
CVEリスト
- CVE-2023-25815 warning
- CVE-2023-29007 critical
- CVE-2023-25652 critical
- CVE-2023-29012 critical
- CVE-2023-29011 critical
- CVE-2023-33139 high
- CVE-2023-24936 critical
- CVE-2023-27909 critical
- CVE-2023-32030 critical
- CVE-2023-32032 high
- CVE-2023-24895 critical
- CVE-2023-24897 critical
- CVE-2023-33126 high
- CVE-2023-21565 high
- CVE-2023-29326 critical
- CVE-2023-33144 high
- CVE-2023-33135 high
- CVE-2023-27910 critical
- CVE-2023-29337 high
- CVE-2023-33141 critical
- CVE-2023-29353 high
- CVE-2023-29331 critical
- CVE-2023-27911 critical
- CVE-2023-33128 high
- CVE-2023-21569 high
KBリスト
- 5027230
- 5027219
- 5026454
- 5027798
- 5027533
- 5027539
- 5027532
- 5025792
- 5027119
- 5026455
- 5027797
- 5027540
- 5027123
- 5026610
- 5027537
- 5027534
- 5027544
- 5027543
- 5027536
- 5027531
- 5027541
- 5027538
- 5027542
も参照してください
お住まいの地域に広がる脆弱性の統計をご覧ください statistics.securelist.com
この脆弱性についての記述に不正確な点がありますか? お知らせください!