Multiple vulnerabilities in Microsoft Developer Tools

Описание

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to gain privileges, bypass security restrictions.

Below is a complete list of vulnerabilities:

1. An elevation of privilege vulnerability in Microsoft Visual Studio can be exploited remotely to gain privileges.
2. A security feature bypass vulnerability in MSR JavaScript Cryptography Library can be exploited remotely to bypass security restrictions.
3. An elevation of privilege vulnerability in Visual Studio Extension Installer Service can be exploited remotely via specially crafted application to gain privileges.

Первичный источник обнаружения

• CVE-2020-0899
  CVE-2020-1026
  CVE-2020-0900
  

Связанные продукты

• Microsoft-Visual-Studio

Список CVE

• CVE-2020-0899
  warning
• CVE-2020-1026
  critical
• CVE-2020-0900
  warning

Список KB

• 4540102

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com