CVE-2025-29803

Name of the Vulnerable Software and Affected Versions: Visual Studio Tools for Applications version 16.0 SQL Server Management Studio (affected versions not specified)

Description: The issue is related to an uncontrolled search path element in Visual Studio Tools for Applications and SQL Server Management Studio, allowing an authorized attacker to elevate privileges locally. This can potentially compromise the system's integrity. The exploitation of this issue allows an attacker to execute code with elevated privileges.

Recommendations: For Visual Studio Tools for Applications version 16.0, consider disabling the vulnerable component until a patch is available. For SQL Server Management Studio, at the moment, there is no information about a newer version that contains a fix for this vulnerability.