Microsoft

Visual Studio 2022

112 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2025-53773

Exploit
  • EPSS 0.86%
  • Published 12.08.2025 17:09:51
  • Last modified 15.08.2025 17:01:01

Improper neutralization of special elements used in a command ('command injection') in GitHub Copilot and Visual Studio allows an unauthorized attacker to execute code locally.

8.8

CVE-2025-49739

  • EPSS 0.08%
  • Published 08.07.2025 16:58:15
  • Last modified 16.07.2025 16:40:52

Improper link resolution before file access ('link following') in Visual Studio allows an unauthorized attacker to elevate privileges over a network.

7.1

CVE-2025-47959

  • EPSS 0.08%
  • Published 13.06.2025 01:10:44
  • Last modified 10.07.2025 16:00:47

Improper neutralization of special elements used in a command ('command injection') in Visual Studio allows an authorized attacker to execute code over a network.

7.5

CVE-2025-30399

  • EPSS 0.04%
  • Published 13.06.2025 01:08:00
  • Last modified 10.07.2025 14:25:37

Untrusted search path in .NET and Visual Studio allows an unauthorized attacker to execute code over a network.

8

CVE-2025-26646

  • EPSS 0.05%
  • Published 13.05.2025 21:39:52
  • Last modified 10.07.2025 14:54:17

External control of file name or path in .NET, Visual Studio, and Build Tools for Visual Studio allows an authorized attacker to perform spoofing over a network.

7.8

CVE-2025-32702

Media report
  • EPSS 0.12%
  • Published 13.05.2025 16:59:11
  • Last modified 19.05.2025 18:30:28

Improper neutralization of special elements used in a command ('command injection') in Visual Studio allows an unauthorized attacker to execute code locally.

5.5

CVE-2025-32703

  • EPSS 0.11%
  • Published 13.05.2025 16:58:50
  • Last modified 19.05.2025 18:30:21

Insufficient granularity of access control in Visual Studio allows an authorized attacker to disclose information locally.

7.5

CVE-2025-26682

  • EPSS 15.21%
  • Published 08.04.2025 17:24:22
  • Last modified 09.07.2025 16:32:39

Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny service over a network.

7.3

CVE-2025-29804

  • EPSS 0.04%
  • Published 08.04.2025 17:24:15
  • Last modified 10.07.2025 15:16:56

Improper access control in Visual Studio allows an authorized attacker to elevate privileges locally.

7.3

CVE-2025-29802

  • EPSS 0.05%
  • Published 08.04.2025 17:24:13
  • Last modified 10.07.2025 15:16:31

Improper access control in Visual Studio allows an authorized attacker to elevate privileges locally.