Multiple vulnerabilities in Microsoft Developer Tools

Açıklama

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges.

Below is a complete list of vulnerabilities:

1. A denial of service vulnerability in HTTP/2 protocol can be exploited remotely to cause denial of service.
2. An elevation of privilege vulnerability in Azure DevOps Server can be exploited remotely to gain privileges.
3. A denial of service vulnerability in Microsoft QUIC can be exploited remotely to cause denial of service.

Orijinal öneriler

• CVE-2023-44487

• CVE-2023-36561
• CVE-2023-36435
• CVE-2023-38171

Kötüye kullanma

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

İlgili ürünler

• Microsoft-Visual-Studio
• Microsoft-Azure
• .NET

CVE Listesi

• CVE-2023-38171
  critical
• CVE-2023-36435
  critical
• CVE-2023-44487
  critical
• CVE-2023-36561
  high

KB Listesi

• 5032875
• 5032874

Daha fazlasını okuyun

Bölgenizde yayılan güvenlik açıklarının istatistiklerini öğrenin statistics.securelist.com