CVE-2019-1486

Published: Dec 10, 2019

Modified: Aug 4, 2024

PUBLISHED

Description

A spoofing vulnerability exists in Visual Studio Live Share when a guest connected to a Live Share session is redirected to an arbitrary URL specified by the session host, aka 'Visual Studio Live Share Spoofing Vulnerability'.

Vendor	Product	Versions
Microsoft	Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)	affected `unspecified`
Microsoft	Microsoft Visual Studio Live Share extension	affected `unspecified`
Microsoft	Microsoft Visual Studio 2019	affected `16.0`

References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1486

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-1486

Description

Affected Products

References