Kaspersky ID:
KLA91143
Дата обнаружения:
14/07/2026
Обновлено:
16/07/2026

Описание

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, execute arbitrary code, gain privileges, obtain sensitive information, spoof user interface.

Below is a complete list of vulnerabilities:

  1. A security feature bypass vulnerability in GitHub Copilot and Visual Studio Code can be exploited remotely to bypass security restrictions.
  2. A security feature bypass vulnerability in Visual Studio Code can be exploited remotely to bypass security restrictions.
  3. A denial of service vulnerability in OData for ASP.NET and ASP.NET Core can be exploited remotely to cause denial of service.
  4. An information disclosure vulnerability in GitHub Copilot and Visual Studio Code can be exploited remotely to obtain sensitive information.
  5. An elevation of privilege vulnerability in ASP.NET Core can be exploited remotely to gain privileges.
  6. A denial of service vulnerability in .NET can be exploited remotely to cause denial of service.
  7. A security feature bypass vulnerability in .NET can be exploited remotely to bypass security restrictions.
  8. A remote code execution vulnerability in Visual Studio can be exploited remotely to execute arbitrary code.
  9. A remote code execution vulnerability in Visual Studio Code can be exploited remotely to execute arbitrary code.
  10. A denial of service vulnerability in .NET Framework can be exploited remotely to cause denial of service.
  11. A tampering vulnerability in .NET can be exploited remotely to spoof user interface.
  12. A remote code execution vulnerability in .NET Framework can be exploited remotely to execute arbitrary code.
  13. A remote code execution vulnerability in .NET can be exploited remotely to execute arbitrary code.
  14. An elevation of privilege vulnerability in .NET Framework can be exploited remotely to gain privileges.
  15. A spoofing vulnerability in .NET can be exploited remotely to spoof user interface.
  16. A denial of service vulnerability in ASP.NET Core can be exploited remotely to cause denial of service.

Первичный источник обнаружения

Эксплуатация

Список CVE

  • CVE-2026-41109
    unknown
  • CVE-2026-45496
    unknown
  • CVE-2026-45646
    unknown
  • CVE-2026-47282
    high
  • CVE-2026-50506
    unknown
  • CVE-2026-50520
    unknown
  • CVE-2026-56170
    unknown
  • CVE-2026-57101
    unknown
  • CVE-2026-57102
    unknown
  • CVE-2026-57108
    unknown
  • CVE-2026-47300
    critical
  • CVE-2026-47302
    unknown
  • CVE-2026-47303
    unknown
  • CVE-2026-47304
    critical
  • CVE-2026-47305
    critical
  • CVE-2026-50524
    unknown
  • CVE-2026-50525
    critical
  • CVE-2026-50526
    high
  • CVE-2026-50527
    unknown
  • CVE-2026-50528
    critical
  • CVE-2026-50646
    critical
  • CVE-2026-50648
    unknown
  • CVE-2026-50649
    critical
  • CVE-2026-50650
    critical
  • CVE-2026-50651
    unknown
  • CVE-2026-50659
    high

Список KB

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com

Нашли неточность в описании этой уязвимости? Дайте нам знать!
Kaspersky IT Security Calculator:
Оцените ваш профиль кибербезопасности
Узнать больше
Встречай новый Kaspersky!
Каждая минута твоей онлайн-жизни заслуживает топовой защиты.
Узнать больше
Do you want to save your changes?
Your message has been sent successfully.