QID 91881
Date Published: 2022-04-13
QID 91881: Microsoft Visual Studio Security Update for April 2022
Microsoft has released security Updates for Visual Studio which resolves Remote Code Execution and Denial of Service vulnerability.
Affected Software:
Microsoft Visual Studio 2019 version 16.7 (includes 16.0 - 16.6)
Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)
Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)
Microsoft Visual Studio 2017 Version 17.0
Microsoft Visual Studio 2017 Version 17.1
and
Microsoft VIsual Studio for Mac prior to 8.10.22.11
QID Detection Logic: Authenticated
This QID detects vulnerable versions of Microsoft Visual Studio by checking the file version of the Visual Studio.
Microsoft Visual Studio is prone to Elevation of Privilege Vulnerabilities
Solution
Customers are advised to refer to CVE-2022-24765, CVE-2022-24513 and CVE-2022-24767 for more information pertaining to these vulnerabilities.
Vendor References
- CVE-2022-24513 -
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24513 - CVE-2022-24765 -
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24765
- CVE-2022-24767 -
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24767
CVEs related to QID 91881
Software Advisories
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| CVE-2022-24513 |
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24513 |
||
| CVE-2022-24765 |
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24765 |
||
| CVE-2022-24767 |
msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24767 |