QID 92034
Date Published: 2023-07-12
QID 92034: Microsoft Visual Studio Security Updates for July 2023
Microsoft has released security Updates for Visual Studio which resolve Security Feature Bypass and Escalation of Privileges Vulnerabilities.
Affected Software:
Microsoft Visual Studio 2022 version 17.6
Microsoft Visual Studio 2022 version 17.4
Microsoft Visual Studio 2022 version 17.2
Microsoft Visual Studio 2022 version 17.0
QID Detection Logic: Authenticated : Windows
This QID detects vulnerable versions of Microsoft Visual Studio by checking the registry key "HKLM\SOFTWARE\Microsoft" and file "evenv.exe" to check the version of the Visual Studio.
Vulnerable versions of Microsoft Visual Studio are prone to Security Feature Bypass and Escalation of Privileges Vulnerabilities.
Solution
Customers are advised to refer to CVE-2023-33127, CVE-2023-33170, CVE-2023-35373, and CVE-2023-35333 for more information on these vulnerabilities and their patches.
Vendor References
- CVE-2023-33127 -
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33127 - CVE-2023-33170 -
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170
- CVE-2023-35333 -
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35333
- CVE-2023-35373 -
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35373
CVEs related to QID 92034
Software Advisories
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| CVE-2023-33127 |
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33127 |
||
| CVE-2023-33170 |
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33170 |
||
| CVE-2023-35333 |
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35333 |
||
| CVE-2023-35373 |
msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35373 |