Multiple vulnerabilities in Microsoft Developer Tools

Описание

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information, execute arbitrary code, spoof user interface.

Below is a complete list of vulnerabilities:

1. A security feature bypass vulnerability in Visual Studio Code can be exploited remotely to bypass security restrictions.
2. An information disclosure vulnerability in Visual Studio can be exploited remotely to obtain sensitive information.
3. A remote code execution vulnerability in Visual Studio can be exploited remotely to execute arbitrary code.
4. A spoofing vulnerability in .NET, Visual Studio, and Build Tools for Visual Studio can be exploited remotely to spoof user interface.

Первичный источник обнаружения

• CVE-2025-21264
  CVE-2025-32703
  CVE-2025-32702
  CVE-2025-26646
  

Связанные продукты

• Microsoft-Visual-Studio
• Microsoft-Windows
• .NET

Список CVE

• CVE-2025-21264
  high
• CVE-2025-32702
  critical
• CVE-2025-32703
  high
• CVE-2025-26646
  critical

Список KB

• 5059200
• 5059201

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com