Описание
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to gain privileges, spoof user interface, obtain sensitive information.
Below is a complete list of vulnerabilities:
- An elevation of privilege vulnerability in Diagnostic Hub Standard Collector can be exploited remotely via specially crafted application to gain privileges.
- An elevation of privilege vulnerability in Diagnostics Hub Standard Collector can be exploited remotely to gain privileges.
- Unspecified Microsoft Azure can be exploited remotely to spoof user interface.
- An information disclosure vulnerability in Visual Studio Code Live Share can be exploited remotely to obtain sensitive information.
- A spoofing vulnerability in NuGetGallery can be exploited remotely via specially crafted content to spoof user interface.
Первичный источник обнаружения
- CVE-2020-1202
CVE-2020-1203
CVE-2020-1278
CVE-2020-1293
CVE-2020-1327
CVE-2020-1343
CVE-2020-1257
CVE-2020-1340
Связанные продукты
- Microsoft-Visual-Studio
- Microsoft-Windows
- Microsoft-Windows-Server
- Microsoft-Windows-10
- Microsoft-Azure
Список CVE
- CVE-2020-1293 warning
- CVE-2020-1202 high
- CVE-2020-1203 high
- CVE-2020-1257 warning
- CVE-2020-1278 warning
- CVE-2020-1327 warning
- CVE-2020-1343 warning
- CVE-2020-1340 warning
Список KB
Смотрите также
Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com
Нашли неточность в описании этой уязвимости? Дайте нам знать!