Vulnerability in Microsoft Visual Studio

CVE-2020-0793

An elevation of privilege vulnerability exists when the Diagnostics Hub Standard Collector Service improperly handles file operations, aka 'Diagnostics Hub Standard Collector Elevation of Privilege Vulnerability'.

EPSS: 0.004 (59.2th percentile) — read the EPSS interpretation.

Affected products

Microsoft Visual Studio — versions 2015 Update 3
Microsoft Visual Studio 2017 Version 15.9 (Includes 15.1 - 15.8) — versions unspecified
Microsoft Visual Studio 2019 — versions 16.0
Microsoft Visual Studio 2019 Version 16.4 (Includes 16.0 - 16.3) — versions unspecified
Microsoft Windows — versions 10 Version 1803 for 32-bit Systems, 10 Version 1803 for x64-based Systems, 10 Version 1803 for ARM64-based Systems
Microsoft Windows 10 Version 1903 For 32-bit Systems — versions unspecified
Microsoft Windows 10 Version 1903 For Arm64-based Systems — versions unspecified
Microsoft Windows 10 Version 1903 For X64-based Systems — versions unspecified
Microsoft Windows 10 Version 1909 For 32-bit Systems — versions unspecified
Microsoft Windows 10 Version 1909 For Arm64-based Systems — versions unspecified

References

portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0793 (x_refsource_MISC)