CVE-2019-0727

Name of the Vulnerable Software and Affected Versions Diagnostics Hub Standard Collector (affected versions not specified) Visual Studio Standard Collector (affected versions not specified)

Description The issue is related to an elevation of privilege, where the Diagnostics Hub Standard Collector or the Visual Studio Standard Collector allows file deletion in arbitrary locations. To exploit this, an attacker must first log on to the system. The vulnerability is associated with insufficient access restrictions in the Diagnostics Hub Standard Collector Service, which is part of the Visual Studio development tools. This could allow an attacker to elevate their privileges.

Recommendations For Diagnostics Hub Standard Collector, consider restricting access to sensitive locations until a patch is available. For Visual Studio Standard Collector, limit privileges for users who can access the collector service to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.