CVE-2024-49044

Published: Nov 12, 2024Modified: Nov 16, 2024

6.7

Vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:L

Exploitability: 1.2 / Impact: 5.5

Source: secure@microsoft.com (Secondary)

Description

Visual Studio Elevation of Privilege Vulnerability

Affected (4)

Products: Microsoft: Visual Studio 2022

1 product

Visual Studio 2022

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Microsoft Visual Studio 2022	From 17.10.0 to 17.10.9
Microsoft Visual Studio 2022	From 17.11.0 to 17.11.6
Microsoft Visual Studio 2022	From 17.6.0 to 17.6.21
Microsoft Visual Studio 2022	From 17.8.0 to 17.8.16

Related CWEs

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

References (1)

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49044

Source: secure@microsoft.com

PatchVendor Advisory

Timeline

No history available yet.