Microsoft Visual Studio 2019

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in Microsoft Visual Studio 2019.

By the Year

In 2026 there have been 0 vulnerabilities in Microsoft Visual Studio 2019. Last year, in 2025 Visual Studio 2019 had 10 security vulnerabilities published. Right now, Visual Studio 2019 is on track to have less security vulnerabilities in 2026 than it did last year.

Year	Vulnerabilities	Average Score
2026	0	0.00
2025	10	7.64
2024	16	8.03
2023	18	7.07
2022	17	7.71
2021	23	7.14
2020	30	6.82
2019	7	6.95

It may take a day or so for new Visual Studio 2019 vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Microsoft Visual Studio 2019 Security Vulnerabilities

Oct 2025: Visual Studio Elevation of Privilege Vulnerability
CVE-2025-55240 7.3 - High - October 14, 2025

Improper access control in Visual Studio allows an authorized attacker to elevate privileges locally.

Authorization

Jul 2025: Visual Studio Elevation of Privilege Vulnerability
CVE-2025-49739 8.8 - High - July 08, 2025

Improper link resolution before file access ('link following') in Visual Studio allows an unauthorized attacker to elevate privileges over a network.

insecure temporary file

May 2025: Visual Studio Remote Code Execution Vulnerability
CVE-2025-32702 7.8 - High - May 13, 2025

Improper neutralization of special elements used in a command ('command injection') in Visual Studio allows an unauthorized attacker to execute code locally.

Command Injection

May 2025: Visual Studio Information Disclosure Vulnerability
CVE-2025-32703 5.5 - Medium - May 13, 2025

Insufficient granularity of access control in Visual Studio allows an authorized attacker to disclose information locally.

Insufficient Granularity of Access Control

Mar 2025: Visual Studio Elevation of Privilege Vulnerability
CVE-2025-24998 7.3 - High - March 11, 2025

Uncontrolled search path element in Visual Studio allows an authorized attacker to elevate privileges locally.

DLL preloading

Mar 2025: Visual Studio Elevation of Privilege Vulnerability
CVE-2025-25003 7.3 - High - March 11, 2025

Uncontrolled search path element in Visual Studio allows an authorized attacker to elevate privileges locally.

DLL preloading

Feb 2025: Visual Studio Installer Elevation of Privilege Vulnerability
CVE-2025-21206 7.3 - High - February 11, 2025

Visual Studio Installer Elevation of Privilege Vulnerability

DLL preloading

Jan 2025: .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability
CVE-2025-21176 8.8 - High - January 14, 2025

.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

Buffer Over-read

Jan 2025: .NET and Visual Studio Remote Code Execution Vulnerability
CVE-2025-21172 7.5 - High - January 14, 2025

.NET and Visual Studio Remote Code Execution Vulnerability

Integer Overflow or Wraparound

Jan 2025: Visual Studio Remote Code Execution Vulnerability
CVE-2025-21178 8.8 - High - January 14, 2025

Visual Studio Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Visual Studio Collector Service DoS Vulnerability
CVE-2024-43603 5.5 - Medium - October 08, 2024

Visual Studio Collector Service Denial of Service Vulnerability

insecure temporary file

Microsoft Visual C++ Redistributable Installer Elevation of Privilege
CVE-2024-43590 7.8 - High - October 08, 2024

Visual C++ Redistributable Installer Elevation of Privilege Vulnerability

Authorization

Jul 2024: SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-35272 8.8 - High - July 09, 2024

SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Jun 2024: Visual Studio Elevation of Privilege Vulnerability
CVE-2024-29060 6.7 - Medium - June 11, 2024

Visual Studio Elevation of Privilege Vulnerability

Authorization

Jun 2024: Visual Studio Remote Code Execution Vulnerability
CVE-2024-30052 4.7 - Medium - June 11, 2024

Visual Studio Remote Code Execution Vulnerability

Protection Mechanism Failure

Remote Code Exec in Microsoft ODBC Driver for SQL Server
CVE-2024-28929 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft ODBC Driver for SQL Server RCE Vulnerability
CVE-2024-28932 - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft ODBC Driver for SQL Server RCE
CVE-2024-28933 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft ODBC Driver for SQL Server RCE
CVE-2024-28934 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft ODBC Driver for SQL Server RCE via Buffer Overflow
CVE-2024-28935 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft SQL Server ODBC Driver RCE Vulnerability
CVE-2024-28936 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft ODBC Driver for SQL Server RCE in ODBC Driver
CVE-2024-28937 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft ODBC Driver RCE via Unauthorized Input
CVE-2024-28938 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft ODBC Driver for SQL Server RCE via Remote Exploit
CVE-2024-28931 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft ODBC Driver for SQL Server RCE via Malformed Packet
CVE-2024-28930 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Visual Studio Elevation of Privilege (CVE-2024-20656)
CVE-2024-20656 7.8 - High - January 09, 2024

Visual Studio Elevation of Privilege Vulnerability

Nov 2023: Visual Studio Denial of Service Vulnerability
CVE-2023-36042 6.2 - Medium - November 14, 2023

Visual Studio Denial of Service Vulnerability

Heap-based Buffer Overflow

Sep 2023: Visual Studio Remote Code Execution Vulnerability
CVE-2023-36794 7.8 - High - September 12, 2023

Visual Studio Remote Code Execution Vulnerability

Integer underflow

Sep 2023: Visual Studio Remote Code Execution Vulnerability
CVE-2023-36796 7.8 - High - September 12, 2023

Visual Studio Remote Code Execution Vulnerability

Integer underflow

Sep 2023: Visual Studio Elevation of Privilege Vulnerability
CVE-2023-36759 6.7 - Medium - September 12, 2023

Visual Studio Elevation of Privilege Vulnerability

Untrusted Pointer Dereference

Sep 2023: Visual Studio Remote Code Execution Vulnerability
CVE-2023-36792 7.8 - High - September 12, 2023

Visual Studio Remote Code Execution Vulnerability

Integer Overflow or Wraparound

Sep 2023: Visual Studio Remote Code Execution Vulnerability
CVE-2023-36793 7.8 - High - September 12, 2023

Visual Studio Remote Code Execution Vulnerability

Heap-based Buffer Overflow

Microsoft Visual Studio Tools for Office Runtime Spoofing Vulnerability
CVE-2023-36897 6.5 - Medium - August 08, 2023

Visual Studio Tools for Office Runtime Spoofing Vulnerability

.NET Framework & VS Remote Code Execution Vulnerability
CVE-2023-24897 7.8 - High - June 14, 2023

.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

Visual Studio Info Disclosure Vulnerability
CVE-2023-33139 5.5 - Medium - June 14, 2023

Visual Studio Information Disclosure Vulnerability

MS Visual Studio RCE Vulnerability CVE-2023-28296
CVE-2023-28296 7.8 - High - April 11, 2023

Visual Studio Remote Code Execution Vulnerability

Visual Studio Spoofing Vulnerability
CVE-2023-28299 5.5 - Medium - April 11, 2023

Visual Studio Spoofing Vulnerability

MS VS Info Disclosure CVE-2023-28263
CVE-2023-28263 5.5 - Medium - April 11, 2023

Visual Studio Information Disclosure Vulnerability

Microsoft Visual Studio EoP Vulnerability CVE-2023-28262
CVE-2023-28262 7.8 - High - April 11, 2023

Visual Studio Elevation of Privilege Vulnerability

VisStudio EoP Vulnerability
CVE-2023-21566 7.8 - High - February 14, 2023

Visual Studio Elevation of Privilege Vulnerability

Microsoft Visual Studio RCE Vulnerability CVE-2023-21815
CVE-2023-21815 7.8 - High - February 14, 2023

Visual Studio Remote Code Execution Vulnerability

Visual Studio DOS from malicious code parsing
CVE-2023-21567 5.6 - Medium - February 14, 2023

Visual Studio Denial of Service Vulnerability

Visual Studio RCE via Remote Code Execution Vulnerability
CVE-2023-23381 7.8 - High - February 14, 2023

Visual Studio Remote Code Execution Vulnerability

CVE-2023-21808: RCE in .NET/Visual Studio
CVE-2023-21808 7.8 - High - February 14, 2023

.NET and Visual Studio Remote Code Execution Vulnerability

Microsoft Visual Studio RCE via Unsafe Deserialization
CVE-2022-41119 7.8 - High - November 09, 2022

Visual Studio Remote Code Execution Vulnerability

NuGet Client EoP Vulnerability
CVE-2022-41032 7.8 - High - October 11, 2022

NuGet Client Elevation of Privilege Vulnerability

.NET Core & VS DoS Vulnerability
CVE-2022-38013 7.5 - High - September 13, 2022

.NET Core and Visual Studio Denial of Service Vulnerability

Microsoft Visual Studio Remote Code Execution Vulnerability
CVE-2022-35777 8.8 - High - August 09, 2022

Visual Studio Remote Code Execution Vulnerability

Microsoft Visual Studio RCE Vulnerability
CVE-2022-35827 8.8 - High - August 09, 2022

Visual Studio Remote Code Execution Vulnerability

Visual Studio RCE Vulnerability
CVE-2022-35825 8.8 - High - August 09, 2022

Visual Studio Remote Code Execution Vulnerability

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Microsoft Visual Studio 2019 or by Microsoft? Click the Watch button to subscribe.

Microsoft
Vendor

Microsoft Visual Studio 2019
Product

Microsoft Visual Studio 2019

Don't miss out!

By the Year

Recent Microsoft Visual Studio 2019 Security Vulnerabilities

Oct 2025: Visual Studio Elevation of Privilege Vulnerability CVE-2025-55240 7.3 - High - October 14, 2025

Jul 2025: Visual Studio Elevation of Privilege Vulnerability CVE-2025-49739 8.8 - High - July 08, 2025

May 2025: Visual Studio Remote Code Execution Vulnerability CVE-2025-32702 7.8 - High - May 13, 2025

May 2025: Visual Studio Information Disclosure Vulnerability CVE-2025-32703 5.5 - Medium - May 13, 2025

Mar 2025: Visual Studio Elevation of Privilege Vulnerability CVE-2025-24998 7.3 - High - March 11, 2025

Mar 2025: Visual Studio Elevation of Privilege Vulnerability CVE-2025-25003 7.3 - High - March 11, 2025

Feb 2025: Visual Studio Installer Elevation of Privilege Vulnerability CVE-2025-21206 7.3 - High - February 11, 2025

Jan 2025: .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability CVE-2025-21176 8.8 - High - January 14, 2025

Jan 2025: .NET and Visual Studio Remote Code Execution Vulnerability CVE-2025-21172 7.5 - High - January 14, 2025

Jan 2025: Visual Studio Remote Code Execution Vulnerability CVE-2025-21178 8.8 - High - January 14, 2025

Visual Studio Collector Service DoS Vulnerability CVE-2024-43603 5.5 - Medium - October 08, 2024

Microsoft Visual C++ Redistributable Installer Elevation of Privilege CVE-2024-43590 7.8 - High - October 08, 2024

Jul 2024: SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability CVE-2024-35272 8.8 - High - July 09, 2024

Jun 2024: Visual Studio Elevation of Privilege Vulnerability CVE-2024-29060 6.7 - Medium - June 11, 2024

Jun 2024: Visual Studio Remote Code Execution Vulnerability CVE-2024-30052 4.7 - Medium - June 11, 2024

Remote Code Exec in Microsoft ODBC Driver for SQL Server CVE-2024-28929 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server RCE Vulnerability CVE-2024-28932 - April 09, 2024

Microsoft ODBC Driver for SQL Server RCE CVE-2024-28933 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server RCE CVE-2024-28934 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server RCE via Buffer Overflow CVE-2024-28935 8.8 - High - April 09, 2024

Microsoft SQL Server ODBC Driver RCE Vulnerability CVE-2024-28936 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server RCE in ODBC Driver CVE-2024-28937 8.8 - High - April 09, 2024

Microsoft ODBC Driver RCE via Unauthorized Input CVE-2024-28938 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server RCE via Remote Exploit CVE-2024-28931 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server RCE via Malformed Packet CVE-2024-28930 8.8 - High - April 09, 2024

Visual Studio Elevation of Privilege (CVE-2024-20656) CVE-2024-20656 7.8 - High - January 09, 2024

Nov 2023: Visual Studio Denial of Service Vulnerability CVE-2023-36042 6.2 - Medium - November 14, 2023

Sep 2023: Visual Studio Remote Code Execution Vulnerability CVE-2023-36794 7.8 - High - September 12, 2023

Sep 2023: Visual Studio Remote Code Execution Vulnerability CVE-2023-36796 7.8 - High - September 12, 2023

Sep 2023: Visual Studio Elevation of Privilege Vulnerability CVE-2023-36759 6.7 - Medium - September 12, 2023

Sep 2023: Visual Studio Remote Code Execution Vulnerability CVE-2023-36792 7.8 - High - September 12, 2023

Sep 2023: Visual Studio Remote Code Execution Vulnerability CVE-2023-36793 7.8 - High - September 12, 2023

Microsoft Visual Studio Tools for Office Runtime Spoofing Vulnerability CVE-2023-36897 6.5 - Medium - August 08, 2023

.NET Framework & VS Remote Code Execution Vulnerability CVE-2023-24897 7.8 - High - June 14, 2023

Visual Studio Info Disclosure Vulnerability CVE-2023-33139 5.5 - Medium - June 14, 2023

MS Visual Studio RCE Vulnerability CVE-2023-28296 CVE-2023-28296 7.8 - High - April 11, 2023

Visual Studio Spoofing Vulnerability CVE-2023-28299 5.5 - Medium - April 11, 2023

MS VS Info Disclosure CVE-2023-28263 CVE-2023-28263 5.5 - Medium - April 11, 2023

Microsoft Visual Studio EoP Vulnerability CVE-2023-28262 CVE-2023-28262 7.8 - High - April 11, 2023

VisStudio EoP Vulnerability CVE-2023-21566 7.8 - High - February 14, 2023

Microsoft Visual Studio RCE Vulnerability CVE-2023-21815 CVE-2023-21815 7.8 - High - February 14, 2023

Visual Studio DOS from malicious code parsing CVE-2023-21567 5.6 - Medium - February 14, 2023

Visual Studio RCE via Remote Code Execution Vulnerability CVE-2023-23381 7.8 - High - February 14, 2023

CVE-2023-21808: RCE in .NET/Visual Studio CVE-2023-21808 7.8 - High - February 14, 2023

Microsoft Visual Studio RCE via Unsafe Deserialization CVE-2022-41119 7.8 - High - November 09, 2022

NuGet Client EoP Vulnerability CVE-2022-41032 7.8 - High - October 11, 2022

.NET Core & VS DoS Vulnerability CVE-2022-38013 7.5 - High - September 13, 2022

Microsoft Visual Studio Remote Code Execution Vulnerability CVE-2022-35777 8.8 - High - August 09, 2022

Microsoft Visual Studio RCE Vulnerability CVE-2022-35827 8.8 - High - August 09, 2022

Visual Studio RCE Vulnerability CVE-2022-35825 8.8 - High - August 09, 2022

Stay on top of Security Vulnerabilities

Microsoft Vendor

Microsoft Visual Studio 2019Product

Oct 2025: Visual Studio Elevation of Privilege Vulnerability
CVE-2025-55240 7.3 - High - October 14, 2025

Jul 2025: Visual Studio Elevation of Privilege Vulnerability
CVE-2025-49739 8.8 - High - July 08, 2025

May 2025: Visual Studio Remote Code Execution Vulnerability
CVE-2025-32702 7.8 - High - May 13, 2025

May 2025: Visual Studio Information Disclosure Vulnerability
CVE-2025-32703 5.5 - Medium - May 13, 2025

Mar 2025: Visual Studio Elevation of Privilege Vulnerability
CVE-2025-24998 7.3 - High - March 11, 2025

Mar 2025: Visual Studio Elevation of Privilege Vulnerability
CVE-2025-25003 7.3 - High - March 11, 2025

Feb 2025: Visual Studio Installer Elevation of Privilege Vulnerability
CVE-2025-21206 7.3 - High - February 11, 2025

Jan 2025: .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability
CVE-2025-21176 8.8 - High - January 14, 2025

Jan 2025: .NET and Visual Studio Remote Code Execution Vulnerability
CVE-2025-21172 7.5 - High - January 14, 2025

Jan 2025: Visual Studio Remote Code Execution Vulnerability
CVE-2025-21178 8.8 - High - January 14, 2025

Visual Studio Collector Service DoS Vulnerability
CVE-2024-43603 5.5 - Medium - October 08, 2024

Microsoft Visual C++ Redistributable Installer Elevation of Privilege
CVE-2024-43590 7.8 - High - October 08, 2024

Jul 2024: SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-35272 8.8 - High - July 09, 2024

Jun 2024: Visual Studio Elevation of Privilege Vulnerability
CVE-2024-29060 6.7 - Medium - June 11, 2024

Jun 2024: Visual Studio Remote Code Execution Vulnerability
CVE-2024-30052 4.7 - Medium - June 11, 2024

Remote Code Exec in Microsoft ODBC Driver for SQL Server
CVE-2024-28929 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server RCE Vulnerability
CVE-2024-28932 - April 09, 2024

Microsoft ODBC Driver for SQL Server RCE
CVE-2024-28933 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server RCE
CVE-2024-28934 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server RCE via Buffer Overflow
CVE-2024-28935 8.8 - High - April 09, 2024

Microsoft SQL Server ODBC Driver RCE Vulnerability
CVE-2024-28936 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server RCE in ODBC Driver
CVE-2024-28937 8.8 - High - April 09, 2024

Microsoft ODBC Driver RCE via Unauthorized Input
CVE-2024-28938 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server RCE via Remote Exploit
CVE-2024-28931 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server RCE via Malformed Packet
CVE-2024-28930 8.8 - High - April 09, 2024

Visual Studio Elevation of Privilege (CVE-2024-20656)
CVE-2024-20656 7.8 - High - January 09, 2024

Nov 2023: Visual Studio Denial of Service Vulnerability
CVE-2023-36042 6.2 - Medium - November 14, 2023

Sep 2023: Visual Studio Remote Code Execution Vulnerability
CVE-2023-36794 7.8 - High - September 12, 2023

Sep 2023: Visual Studio Remote Code Execution Vulnerability
CVE-2023-36796 7.8 - High - September 12, 2023

Sep 2023: Visual Studio Elevation of Privilege Vulnerability
CVE-2023-36759 6.7 - Medium - September 12, 2023

Sep 2023: Visual Studio Remote Code Execution Vulnerability
CVE-2023-36792 7.8 - High - September 12, 2023

Sep 2023: Visual Studio Remote Code Execution Vulnerability
CVE-2023-36793 7.8 - High - September 12, 2023

Microsoft Visual Studio Tools for Office Runtime Spoofing Vulnerability
CVE-2023-36897 6.5 - Medium - August 08, 2023

.NET Framework & VS Remote Code Execution Vulnerability
CVE-2023-24897 7.8 - High - June 14, 2023

Visual Studio Info Disclosure Vulnerability
CVE-2023-33139 5.5 - Medium - June 14, 2023

MS Visual Studio RCE Vulnerability CVE-2023-28296
CVE-2023-28296 7.8 - High - April 11, 2023

Visual Studio Spoofing Vulnerability
CVE-2023-28299 5.5 - Medium - April 11, 2023

MS VS Info Disclosure CVE-2023-28263
CVE-2023-28263 5.5 - Medium - April 11, 2023

Microsoft Visual Studio EoP Vulnerability CVE-2023-28262
CVE-2023-28262 7.8 - High - April 11, 2023

VisStudio EoP Vulnerability
CVE-2023-21566 7.8 - High - February 14, 2023

Microsoft Visual Studio RCE Vulnerability CVE-2023-21815
CVE-2023-21815 7.8 - High - February 14, 2023

Visual Studio DOS from malicious code parsing
CVE-2023-21567 5.6 - Medium - February 14, 2023

Visual Studio RCE via Remote Code Execution Vulnerability
CVE-2023-23381 7.8 - High - February 14, 2023

CVE-2023-21808: RCE in .NET/Visual Studio
CVE-2023-21808 7.8 - High - February 14, 2023

Microsoft Visual Studio RCE via Unsafe Deserialization
CVE-2022-41119 7.8 - High - November 09, 2022

NuGet Client EoP Vulnerability
CVE-2022-41032 7.8 - High - October 11, 2022

.NET Core & VS DoS Vulnerability
CVE-2022-38013 7.5 - High - September 13, 2022

Microsoft Visual Studio Remote Code Execution Vulnerability
CVE-2022-35777 8.8 - High - August 09, 2022

Microsoft Visual Studio RCE Vulnerability
CVE-2022-35827 8.8 - High - August 09, 2022

Visual Studio RCE Vulnerability
CVE-2022-35825 8.8 - High - August 09, 2022

Microsoft
Vendor

Microsoft Visual Studio 2019
Product