Vulnerability in Microsoft Visual Studio
CVE-2018-8599
An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector Service improperly impersonates certain file operations, aka "Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability." This…
EPSS: 0.003 (55.3th percentile) — read the EPSS interpretation.
Affected products
- Microsoft Visual Studio — versions 2015 Update 3, 2017, 2017 version 15.9
- Microsoft Windows 10 — versions 32-bit Systems, Version 1607 for 32-bit Systems, Version 1607 for x64-based Systems
- Microsoft Windows 10 Servers — versions version 1709 (Server Core Installation), version 1803 (Server Core Installation)
- Microsoft Windows Server 2016 — versions (Server Core installation)
- Microsoft Windows Server 2019 — versions (Server Core installation)
References
- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8599 (x_refsource_CONFIRM)
- 106094 (vdb-entry, x_refsource_BID)