Unrated severityNVD Advisory· Published Apr 15, 2020· Updated Aug 4, 2024

CVE-2020-0900

Description

An elevation of privilege vulnerability exists when the Visual Studio Extension Installer Service improperly handles file operations, aka 'Visual Studio Extension Installer Service Elevation of Privilege Vulnerability'.

Affected products

Microsoft/Visual Studio Extension Installer Servicellm-create
Microsoft/Visual Studiocpe-rescue
Range: 2015 Update 3
Microsoft/Microsoft Visual Studio 2017 version 15.9 (includes 15.1 - 15.8)v5
Range: unspecified
Microsoft/Microsoft Visual Studio 2019v5
Range: 16.0
Microsoft/Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)v5
Range: unspecified
Microsoft/Microsoft Visual Studio 2019 version 16.5v5
Range: unspecified

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0900mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000