Lucene search
Michael DePlante (@izobashi) of Trend Micro's Zero Day InitiativeZDI-21-1077HistorySep 16, 2021 - 12:00 a.m.
Microsoft Visual Studio Incorrect Permission Assignment Privilege Escalation Vulnerability
2021-09-1600:00:00
Michael DePlante (@izobashi) of Trend Micro's Zero Day Initiative
www.zerodayinitiative.com
23
0.0005 Low
EPSS
Percentile
16.0%
This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Visual Studio. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Visual Studio installer. The issue results from incorrect permissions set on a resource used by the installer. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM.
Related
cvelist
cvelist
CVE-2021-26434 Visual Studio Elevation of Privilege Vulnerability
2021-09-15 11:23:00
nvd
nvd
CVE-2021-26434
2021-09-15 12:15:09
prion
prion
Privilege escalation
2021-09-15 12:15:00
mscve
mscve
Visual Studio Elevation of Privilege Vulnerability
2021-09-14 07:00:00
cve
cve
CVE-2021-26434
2021-09-15 12:15:09
nessus
nessus
Security Updates for Microsoft Visual Studio Products (September 2021)
2021-09-16 00:00:00
kaspersky
kaspersky
KLA12285 Multiple vulnerabilities in Microsoft Developer Tools
2021-09-14 00:00:00
qualysblog
qualysblog
rapid7blog
rapid7blog
Patch Tuesday - September 2021
2021-09-15 03:44:31