CVE Vulnerabilities

CVE-2023-28296

Double Free

Published: Apr 11, 2023 | Modified: Nov 21, 2024
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

Visual Studio Remote Code Execution Vulnerability

Weakness

The product calls free() twice on the same memory address.

Affected Software

Name Vendor Start Version End Version
Visual_studio_2017 Microsoft 15.0 (including) 15.9.54 (excluding)
Visual_studio_2019 Microsoft 16.0 (including) 16.11.26 (excluding)
Visual_studio_2022 Microsoft 17.0 (including) 17.0.21 (excluding)
Visual_studio_2022 Microsoft 17.2.0 (including) 17.2.15 (excluding)
Visual_studio_2022 Microsoft 17.4.0 (including) 17.4.7 (excluding)
Visual_studio_2022 Microsoft 17.5.0 (including) 17.5.4 (excluding)

Potential Mitigations

References