Vulnerability Details CVE-2019-1079
An information disclosure vulnerability exists when Visual Studio improperly parses XML input in certain settings files, aka 'Visual Studio Information Disclosure Vulnerability'.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.253
EPSS Ranking 95.9%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.3
References
Products affected by CVE-2019-1079
-
cpe:2.3:a:microsoft:visual_studio:2010
-
cpe:2.3:a:microsoft:visual_studio:2012
-
cpe:2.3:a:microsoft:visual_studio:2013
-
cpe:2.3:a:microsoft:visual_studio:2015