Search Results (113 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2025-55315 2 Microsoft, Redhat 3 Asp.net Core, Visual Studio 2022, Enterprise Linux 2025-10-16 9.9 Critical
Inconsistent interpretation of http requests ('http request/response smuggling') in ASP.NET Core allows an authorized attacker to bypass a security feature over a network.
CVE-2025-53773 2 Github, Microsoft 3 Copilot, Visual Studio, Visual Studio 2022 2025-10-15 7.8 High
Improper neutralization of special elements used in a command ('command injection') in GitHub Copilot and Visual Studio allows an unauthorized attacker to execute code locally.
CVE-2024-30105 2 Microsoft, Redhat 3 .net, Visual Studio 2022, Enterprise Linux 2025-10-14 7.5 High
.NET and Visual Studio Denial of Service Vulnerability
CVE-2024-38095 2 Microsoft, Redhat 3 .net, Visual Studio 2022, Enterprise Linux 2025-10-14 7.5 High
.NET and Visual Studio Denial of Service Vulnerability
CVE-2024-38081 1 Microsoft 16 .net, .net Framework, Visual Studio 2022 and 13 more 2025-10-14 7.3 High
.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability
CVE-2024-35264 2 Microsoft, Redhat 3 .net, Visual Studio 2022, Enterprise Linux 2025-10-14 8.1 High
.NET and Visual Studio Remote Code Execution Vulnerability
CVE-2023-36038 1 Microsoft 3 .net, Asp.net Core, Visual Studio 2022 2025-10-09 8.2 High
ASP.NET Core Denial of Service Vulnerability
CVE-2023-36049 2 Microsoft, Redhat 18 .net, .net Framework, Visual Studio 2022 and 15 more 2025-10-09 7.6 High
.NET, .NET Framework, and Visual Studio Elevation of Privilege Vulnerability
CVE-2023-36558 2 Microsoft, Redhat 5 .net, Asp.net Core, Visual Studio 2022 and 2 more 2025-10-09 6.2 Medium
ASP.NET Core Security Feature Bypass Vulnerability
CVE-2023-36042 1 Microsoft 2 Visual Studio 2019, Visual Studio 2022 2025-10-08 6.2 Medium
Visual Studio Denial of Service Vulnerability
CVE-2025-32702 1 Microsoft 2 Visual Studio 2019, Visual Studio 2022 2025-09-10 7.8 High
Improper neutralization of special elements used in a command ('command injection') in Visual Studio allows an unauthorized attacker to execute code locally.
CVE-2025-32703 1 Microsoft 3 Visual Studio 2017, Visual Studio 2019, Visual Studio 2022 2025-09-10 5.5 Medium
Insufficient granularity of access control in Visual Studio allows an authorized attacker to disclose information locally.
CVE-2025-26646 4 Apple, Linux, Microsoft and 1 more 8 Macos, Linux Kernel, .net and 5 more 2025-09-10 8 High
External control of file name or path in .NET, Visual Studio, and Build Tools for Visual Studio allows an authorized attacker to perform spoofing over a network.
CVE-2025-21178 1 Microsoft 3 Visual Studio 2017, Visual Studio 2019, Visual Studio 2022 2025-09-09 8.8 High
Visual Studio Remote Code Execution Vulnerability
CVE-2025-21172 4 Apple, Linux, Microsoft and 1 more 9 Macos, Linux Kernel, .net and 6 more 2025-09-09 7.5 High
.NET and Visual Studio Remote Code Execution Vulnerability
CVE-2025-21405 1 Microsoft 1 Visual Studio 2022 2025-09-09 7.3 High
Visual Studio Elevation of Privilege Vulnerability
CVE-2025-21173 3 Linux, Microsoft, Redhat 5 Linux Kernel, .net, Visual Studio 2022 and 2 more 2025-09-09 7.3 High
.NET Elevation of Privilege Vulnerability
CVE-2025-21171 4 Apple, Linux, Microsoft and 1 more 7 Macos, Linux Kernel, .net and 4 more 2025-09-09 7.5 High
.NET Remote Code Execution Vulnerability
CVE-2024-43499 4 Apple, Linux, Microsoft and 1 more 6 Macos, Linux Kernel, .net and 3 more 2025-08-27 7.5 High
.NET and Visual Studio Denial of Service Vulnerability
CVE-2025-49739 1 Microsoft 4 Visual Studio, Visual Studio 2017, Visual Studio 2019 and 1 more 2025-08-23 8.8 High
Improper link resolution before file access ('link following') in Visual Studio allows an unauthorized attacker to elevate privileges over a network.