CVE Vulnerabilities for Visual Studio 2022
| CVE | Published | Severity | Details | Exploitability | Impact | Vector |
|---|---|---|---|---|---|---|
| CVE‑2025‑53773 | 2025‑08‑12 18:15:46 | HIGH (8) | Improper neutralization of special elements used in a command ('command injection') in GitHub Copilot and Visual Studio allows an unauthorized attacker to execute code locally. | 2 | 6 | LOCAL |
| CVE‑2024‑28938 | 2024‑04‑09 17:15:56 | HIGH (9) | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | 3 | 6 | NETWORK |
| CVE‑2024‑28937 | 2024‑04‑09 17:15:55 | HIGH (9) | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | 3 | 6 | NETWORK |
| CVE‑2024‑28936 | 2024‑04‑09 17:15:55 | HIGH (9) | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | 3 | 6 | NETWORK |
| CVE‑2024‑28935 | 2024‑04‑09 17:15:55 | HIGH (9) | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | 3 | 6 | NETWORK |
| CVE‑2024‑28934 | 2024‑04‑09 17:15:55 | HIGH (9) | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | 3 | 6 | NETWORK |
| CVE‑2024‑28933 | 2024‑04‑09 17:15:55 | HIGH (9) | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | 3 | 6 | NETWORK |
| CVE‑2024‑28932 | 2024‑04‑09 17:15:54 | HIGH (9) | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | 3 | 6 | NETWORK |
| CVE‑2024‑28931 | 2024‑04‑09 17:15:54 | HIGH (9) | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | 3 | 6 | NETWORK |
| CVE‑2024‑28930 | 2024‑04‑09 17:15:54 | HIGH (9) | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | 3 | 6 | NETWORK |
| CVE‑2024‑28929 | 2024‑04‑09 17:15:54 | HIGH (9) | Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability | 3 | 6 | NETWORK |
| CVE‑2024‑26190 | 2024‑03‑12 17:15:58 | HIGH (8) | Microsoft QUIC Denial of Service Vulnerability | 4 | 4 | NETWORK |
| CVE‑2024‑21319 | 2024‑01‑09 19:15:12 | MEDIUM (7) | Microsoft Identity Denial of service vulnerability | 2 | 4 | NETWORK |
| CVE‑2024‑0056 | 2024‑01‑09 18:15:47 | HIGH (9) | Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability | 2 | 6 | NETWORK |
| CVE‑2023‑38171 | 2023‑10‑10 18:15:18 | HIGH (8) | Microsoft QUIC Denial of Service Vulnerability | 4 | 4 | NETWORK |
| CVE‑2022‑24767 | 2022‑04‑12 18:15:10 | HIGH (8) | GitHub: Git for Windows' uninstaller vulnerable to DLL hijacking when run under the SYSTEM user account. | 2 | 6 | LOCAL |
View OS-specific patching for:
Windows Mac Linux
Logos, products, trade names, and company names are all the property of their respective trademark holders.
The above listing includes products that Lavawall® monitors through public information and/or proprietary statistical analysis.
Although we do have a partner relationship with some of the listed products and companies, they do not necessarily endorse Lavawall® or have integrations with our systems.