Vulnerabilities > Microsoft > Visual Studio 2019 > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-08 | CVE-2024-43603 | Unspecified vulnerability in Microsoft products Visual Studio Collector Service Denial of Service Vulnerability | 5.5 |
| 2023-11-14 | CVE-2023-36042 | Resource Exhaustion vulnerability in Microsoft Visual Studio 2019 and Visual Studio 2022 Visual Studio Denial of Service Vulnerability | 5.5 |
| 2023-08-08 | CVE-2023-36897 | Unspecified vulnerability in Microsoft products Visual Studio Tools for Office Runtime Spoofing Vulnerability | 6.5 |
| 2023-04-11 | CVE-2023-28299 | Unspecified vulnerability in Microsoft Visual Studio 2017 Visual Studio Spoofing Vulnerability | 5.5 |
| 2020-10-07 | CVE-2020-26870 | Cross-site Scripting vulnerability in multiple products Cure53 DOMPurify before 2.0.17 allows mutation XSS. | 6.1 |
| 2020-09-15 | CVE-2020-8927 | Classic Buffer Overflow vulnerability in multiple products A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker controlling the input length of a "one-shot" decompression request to a script can trigger a crash, which happens when copying over chunks of data larger than 2 GiB. | 6.5 |
| 2020-04-15 | CVE-2020-0900 | Unspecified vulnerability in Microsoft products An elevation of privilege vulnerability exists when the Visual Studio Extension Installer Service improperly handles file operations, aka 'Visual Studio Extension Installer Service Elevation of Privilege Vulnerability'. | 5.5 |
| 2020-04-15 | CVE-2020-0899 | Unspecified vulnerability in Microsoft Visual Studio 2017 and Visual Studio 2019 An elevation of privilege vulnerability exists when Microsoft Visual Studio updater service improperly handles file permissions, aka 'Microsoft Visual Studio Elevation of Privilege Vulnerability'. | 5.5 |
| 2019-12-10 | CVE-2019-1486 | Open Redirect vulnerability in Microsoft Visual Studio 2019 and Visual Studio Live Share A spoofing vulnerability exists in Visual Studio Live Share when a guest connected to a Live Share session is redirected to an arbitrary URL specified by the session host, aka 'Visual Studio Live Share Spoofing Vulnerability'. | 6.1 |
| 2019-11-12 | CVE-2019-1425 | Link Following vulnerability in Microsoft Visual Studio 2017 and Visual Studio 2019 An elevation of privilege vulnerability exists when Visual Studio fails to properly validate hardlinks while extracting archived files, aka 'Visual Studio Elevation of Privilege Vulnerability'. | 6.5 |