QwikSec

Security Database

CVE

CWE

Training

CVE-2019-1351

Published: Jan 24, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

A tampering vulnerability exists when Git for Visual Studio improperly handles virtual drive paths, aka 'Git for Visual Studio Tampering Vulnerability'.

Vendor	Product	Versions
Microsoft	Microsoft Visual Studio 2017 version 15.9 (includes 15.1 - 15.8)	affected `unspecified`
Microsoft	Microsoft Visual Studio 2017	affected `15.0`
Microsoft	Microsoft Visual Studio 2019	affected `16.0`
Microsoft	Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)	affected `unspecified`

References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1351

x_refsource_MISC

https://public-inbox.org/git/xmqqr21cqcn9.fsf%40gitster-ct.c.googlers.com/

x_refsource_MISC

openSUSE-SU-2020:0123

vendor-advisory

x_refsource_SUSE

vendor-advisory

x_refsource_GENTOO

openSUSE-SU-2020:0598

vendor-advisory

x_refsource_SUSE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.