Vulnerability Details CVE-2019-1079
An information disclosure vulnerability exists when Visual Studio improperly parses XML input in certain settings files, aka 'Visual Studio Information Disclosure Vulnerability'.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.061
EPSS Ranking 92.5%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.3
References
Products affected by CVE-2019-1079
-
cpe:2.3:a:microsoft:visual_studio:2010
-
cpe:2.3:a:microsoft:visual_studio:2012
-
cpe:2.3:a:microsoft:visual_studio:2013
-
cpe:2.3:a:microsoft:visual_studio:2015