CVE Vulnerabilities

CVE-2019-1077

Published: Jul 15, 2019 | Modified: Aug 24, 2020
CVSS 3.x
5
MEDIUM
Source:
NVD
CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N
CVSS 2.x
6.6 MEDIUM
AV:L/AC:L/Au:N/C:N/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

An elevation of privilege vulnerability exists when the Visual Studio updater service improperly handles file permissions, aka Visual Studio Elevation of Privilege Vulnerability.

Affected Software

Name Vendor Start Version End Version
Visual_studio_2017 Microsoft 15.9 (including) 15.9 (including)
Visual_studio_2019 Microsoft 16.0 (including) 16.0 (including)
Visual_studio_2019 Microsoft 16.1 (including) 16.1 (including)

References