PT-2019-1118 · Microsoft · Visual Studio

Rgod

Published

2019-01-08

Updated

2020-08-24

CVE-2019-0537

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions: Microsoft Visual Studio (affected versions not specified)

Description: The issue is related to an information disclosure problem. It occurs when Microsoft Visual Studio improperly handles certain files, specifically malicious .vscontent files, allowing an attacker to access protected information. This can happen when a victim opens a specially crafted .vscontent file. There is no information provided about the estimated number of potentially affected devices or real-world incidents where this issue was exploited.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

BDU:2019-00144

CVE-2019-0537

ZDI-19-014

Affected Products

Visual Studio

PT-2019-1118 · Microsoft · Visual Studio

CVE-2019-0537

Weakness Enumeration

Related Identifiers

Affected Products

References · 7