CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
68.7%
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, gain privileges, bypass security restrictions, obtain sensitive information.
Below is a complete list of vulnerabilities:
CVE-2019-0727 high
CVE-2019-0733 warning
CVE-2019-0820 warning
CVE-2019-0976 warning
CVE-2019-0981 warning
CVE-2019-0982 warning
CVE-2019-1000 warning
CVE-2019-0971 critical
CVE-2019-0979 warning
CVE-2019-0980 warning
CVE-2019-0864 warning
CVE-2019-0872 warning
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.
Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.
Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.
Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.
Spoof user interface. Exploitation of vulnerabilities with this impact can lead to changes in user interface to beguile user into inaccurate behavior.
support.microsoft.com/kb/4489639
support.microsoft.com/kb/4494440
support.microsoft.com/kb/4495610
support.microsoft.com/kb/4495611
support.microsoft.com/kb/4495613
support.microsoft.com/kb/4495616
support.microsoft.com/kb/4495620
support.microsoft.com/kb/4498961
support.microsoft.com/kb/4498962
support.microsoft.com/kb/4498963
support.microsoft.com/kb/4498964
support.microsoft.com/kb/4499154
support.microsoft.com/kb/4499167
support.microsoft.com/kb/4499179
support.microsoft.com/kb/4499181
support.microsoft.com/kb/4499405
support.microsoft.com/kb/4499406
support.microsoft.com/kb/4499407
support.microsoft.com/kb/4499408
support.microsoft.com/kb/4499409
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2019-0727
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2019-0733
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2019-0820
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2019-0864
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2019-0872
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2019-0971
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2019-0976
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2019-0979
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2019-0980
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2019-0981
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2019-0982
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2019-1000
statistics.securelist.com/
threats.kaspersky.com/en/product/Microsoft-.NET-Framework/
threats.kaspersky.com/en/product/Microsoft-Active-Directory/
threats.kaspersky.com/en/product/Microsoft-Azure/
threats.kaspersky.com/en/product/Microsoft-Visual-Studio/
threats.kaspersky.com/en/product/Microsoft-Windows-10/
threats.kaspersky.com/en/product/Microsoft-Windows-Server/
threats.kaspersky.com/en/product/Microsoft-Windows/
threats.kaspersky.com/en/product/Team-Foundation-Server/
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
68.7%