CVE-2020-0900

Published: Apr 15, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

An elevation of privilege vulnerability exists when the Visual Studio Extension Installer Service improperly handles file operations, aka 'Visual Studio Extension Installer Service Elevation of Privilege Vulnerability'.

Vendor	Product	Versions
Microsoft	Microsoft Visual Studio 2019 version 16.5	affected `unspecified`
Microsoft	Microsoft Visual Studio 2017 version 15.9 (includes 15.1 - 15.8)	affected `unspecified`
Microsoft	Microsoft Visual Studio 2019	affected `16.0`
Microsoft	Microsoft Visual Studio	affected `2015 Update 3`
Microsoft	Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)	affected `unspecified`

References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0900

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-0900

Description

Affected Products

References