V
Scaner-VS
ENRU
HomeCatalogSourcesCWECAPECATT&CKMitigationsProductsVendorsDocs
Back to catalog
CVE-2022-35777
MSR
High

Visual Studio Remote Code Execution Vulnerability

CVSS
8.8
High
EPSS
0.02
p73
Published
2022-01-01
Updated
2022-01-01
Description

Visual Studio Remote Code Execution Vulnerability

Tags · CWE
Pre-auth
CWE-94
CAPEC-35
CAPEC-77
CAPEC-242
Affected products
Visual_studioVisual_studio_2017 15.0–15.9Visual_studio_2019 16.0–16.11Visual_studio_2022
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Timeline
2022-01-01
Published
2022-01-01
Updated
CVSS 3.1 breakdown
Attack Vector
AV: N
Network (N)
Attack Complexity
AC: L
Low (L)
Privileges Required
PR: N
None (N)
User Interaction
UI: R
Required (R)
Scope
S: U
Unchanged (U)
Confidentiality Impact
C: H
High (H)
Integrity Impact
I: H
High (H)
Availability Impact
A: H
High (H)
Exploit indicators
EPSS
0.017 · p73
Known exploited (KEV)
No
MITRE ATT&CK
Inferred via CAPEC
└ via CAPEC-35 · CWE-94
└ via CAPEC-35 · CWE-94
└ via CAPEC-35 · CWE-94
Known exploits — Сканер-ВС
No Сканер-ВС checks registered for this vulnerability yet.
Affected products
Microsoft
WindowsVisual Studio 2022Visual Studio 2019Visual Studio 2017Visual Studio
ProductVendorStatus
visual_studio*Tracked
visual_studio_2017*Tracked
visual_studio_2019*Tracked
visual_studio_2022*Tracked
WindowsMicrosoftTracked
WindowsMicrosoftTracked
WindowsMicrosoftTracked
Source databases
MSR
CVE
Related vulnerabilities
BDU:2022-04967