Kaspersky Threats

Описание

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, cause denial of service.

Below is a complete list of vulnerabilities:

A remote code execution vulnerability in Microsoft SQL Server Integration Service (VS extension) can be exploited remotely to execute arbitrary code.
A remote code execution vulnerability in Visual Studio can be exploited remotely to execute arbitrary code.
A remote code execution vulnerability in Azure DevOps Server can be exploited remotely to execute arbitrary code.
An elevation of privilege vulnerability in Visual Studio can be exploited remotely to gain privileges.
A denial of service vulnerability in .NET Framework can be exploited remotely to cause denial of service.
A denial of service vulnerability in Visual Studio can be exploited remotely to cause denial of service.
A remote code execution vulnerability in GitHub can be exploited remotely to execute arbitrary code.
A remote code execution vulnerability in .NET and Visual Studio can be exploited remotely to execute arbitrary code.
Integer overflow vulnerability can be exploited to execute arbitrary code.

Первичный источник обнаружения

CVE-2023-21815
CVE-2023-21553
CVE-2023-21566
CVE-2023-21722
CVE-2023-23381
CVE-2023-21567
CVE-2023-41953
CVE-2023-21568
CVE-2023-21808
CVE-2022-23521

Эксплуатация

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

Список CVE

CVE-2022-23521
critical
CVE-2023-21568
high
CVE-2023-21815
critical
CVE-2023-21553
critical
CVE-2023-21566
critical
CVE-2023-21722
warning
CVE-2023-23381
critical
CVE-2023-21567
high
CVE-2023-21808
critical
CVE-2023-41953
unknown

Список KB

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com

Нашли неточность в описании этой уязвимости? Дайте нам знать!