Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2020-1416

EPSS 9.87% · P93
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-1416

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
An elevation of privilege vulnerability exists in Visual Studio and Visual Studio Code when they load software dependencies, aka 'Visual Studio and Visual Studio Code Elevation of Privilege Vulnerability'.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft Visual Studio和Visual Studio Code 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Microsoft Visual Studio和Visual Studio Code都是美国微软(Microsoft)公司的产品。Microsoft Visual Studio是一款开发工具套件系列产品,也是一个基本完整的开发工具集,它包括了整个软件生命周期中所需要的大部分工具。Visual Studio Code是一款开源的代码编辑器。 Microsoft Visual Studio和Visual Studio Code中存在安全漏洞。本地攻击者可借助恶意内容利用该漏洞在当前用户环境中注入要运行的任意代
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
MicrosoftMicrosoft Visual Studio 2019 version 16.6 (includes 16.0 - 16.5) unspecified -
MicrosoftVisual Studio Code unspecified -
MicrosoftMicrosoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) unspecified -
MicrosoftMicrosoft Visual Studio 2019 16.0 -
MicrosoftMicrosoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3) unspecified -
MicrosoftAzure Storage Explorer unspecified -
MicrosoftTypeScript unspecified -

II. Public POCs for CVE-2020-1416

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2020-1416

登录查看更多情报信息。

Same Patch Batch · Microsoft · 2020-07-14 · 123 CVEs total

CVE-2020-13367.8 HIGHWindows Kernel Elevation of Privilege Vulnerability
CVE-2020-1429Microsoft Windows Error Reporting Manager 安全漏洞
CVE-2020-1430Microsoft Windows UPnP 安全漏洞
CVE-2020-1428Microsoft Windows Network Connections Service 安全漏洞
CVE-2020-1427Microsoft Windows Network Connections Service 安全漏洞
CVE-2020-1426Microsoft Windows Kernel 信息泄露漏洞
CVE-2020-1424Microsoft Windows Update Stack 安全漏洞
CVE-2020-1423Microsoft Windows Subsystem for Linux 安全漏洞
CVE-2020-1422Microsoft Windows Runtime 安全漏洞
CVE-2020-1421Microsoft Windows 安全漏洞
CVE-2020-1420Microsoft Windows Error Reporting 信息泄露漏洞
CVE-2020-1419Microsoft Windows Kernel 缓冲区错误漏洞
CVE-2020-1418Microsoft Windows Diagnostics Execution Service 输入验证错误漏洞
CVE-2020-1415Microsoft Windows Runtime 安全漏洞
CVE-2020-1414Microsoft Windows Runtime 安全漏洞
CVE-2020-1413Microsoft Windows Runtime 安全漏洞
CVE-2020-1412Microsoft Graphics Components 缓冲区错误漏洞
CVE-2020-1402Microsoft Windows ActiveX Installer Service 安全漏洞
CVE-2020-1401Microsoft Jet Database Engine 缓冲区错误漏洞
CVE-2020-1400Microsoft Jet Database Engine 数字错误漏洞

Showing top 20 of 123 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same vendor: Microsoft

V. Comments for CVE-2020-1416

No comments yet

Leave a comment