CVE-2019-1425

An elevation of privilege vulnerability exists when Visual Studio fails to properly validate hardlinks while extracting archived files, aka 'Visual Studio Elevation of Privilege Vulnerability'.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:microsoft:visual_studio_2017:15.9:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.3:*:*:*:*:*:*:*

Information

Published : 2019-11-12 11:15

Updated : 2020-08-24 10:37


NVD link : CVE-2019-1425

Mitre link : CVE-2019-1425


JSON object : View

CWE
CWE-59

Improper Link Resolution Before File Access ('Link Following')

Advertisement

dedicated server usa

Products Affected

microsoft

  • visual_studio_2017
  • visual_studio_2019