Microsoft Visual Studio 2019

Don't miss out!

Thousands of developers use stack.watch to stay informed.
Get an email whenever new security vulnerabilities are reported in Microsoft Visual Studio 2019.

By the Year

In 2025 there have been 7 vulnerabilities in Microsoft Visual Studio 2019 with an average score of 7.4 out of ten. Last year, in 2024 Visual Studio 2019 had 15 security vulnerabilities published. Right now, Visual Studio 2019 is on track to have less security vulnerabilities in 2025 than it did last year. Last year, the average CVE base score was greater by 0.62

Year	Vulnerabilities	Average Score
2025	7	7.36
2024	15	7.98
2023	18	7.03
2022	17	7.71
2021	23	7.14
2020	30	7.32
2019	6	6.75
2018	0	0.00

It may take a day or so for new Visual Studio 2019 vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Microsoft Visual Studio 2019 Security Vulnerabilities

Improper neutralization of special elements used in a command ('command injection') in Visual Studio

CVE-2025-32702 7.8 - High - May 13, 2025

Improper neutralization of special elements used in a command ('command injection') in Visual Studio allows an unauthorized attacker to execute code locally.

Command Injection

Insufficient granularity of access control in Visual Studio

CVE-2025-32703 5.5 - Medium - May 13, 2025

Insufficient granularity of access control in Visual Studio allows an authorized attacker to disclose information locally.

Information Disclosure

Uncontrolled search path element in Visual Studio

CVE-2025-24998 7.3 - High - March 11, 2025

Uncontrolled search path element in Visual Studio allows an authorized attacker to elevate privileges locally.

DLL preloading

Uncontrolled search path element in Visual Studio

CVE-2025-25003 7.3 - High - March 11, 2025

Uncontrolled search path element in Visual Studio allows an authorized attacker to elevate privileges locally.

DLL preloading

Visual Studio Installer Elevation of Privilege Vulnerability

CVE-2025-21206 7.3 - High - February 11, 2025

Visual Studio Installer Elevation of Privilege Vulnerability

DLL preloading

.NET and Visual Studio Remote Code Execution Vulnerability

CVE-2025-21172 7.5 - High - January 14, 2025

.NET and Visual Studio Remote Code Execution Vulnerability

Integer Overflow or Wraparound

Visual Studio Remote Code Execution Vulnerability

CVE-2025-21178 8.8 - High - January 14, 2025

Visual Studio Remote Code Execution Vulnerability

Out-of-bounds Read

Visual Studio Collector Service Denial of Service Vulnerability

CVE-2024-43603 5.5 - Medium - October 08, 2024

Visual Studio Collector Service Denial of Service Vulnerability

insecure temporary file

Visual C++ Redistributable Installer Elevation of Privilege Vulnerability

CVE-2024-43590 7.8 - High - October 08, 2024

Visual C++ Redistributable Installer Elevation of Privilege Vulnerability

Authorization

Visual Studio Elevation of Privilege Vulnerability

CVE-2024-29060 6.7 - Medium - June 11, 2024

Visual Studio Elevation of Privilege Vulnerability

Visual Studio Remote Code Execution Vulnerability

CVE-2024-30052 4.7 - Medium - June 11, 2024

Visual Studio Remote Code Execution Vulnerability

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

CVE-2024-28929 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

CVE-2024-28930 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

CVE-2024-28931 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

CVE-2024-28932 - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

CVE-2024-28933 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

CVE-2024-28934 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

CVE-2024-28935 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

CVE-2024-28936 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

CVE-2024-28937 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

CVE-2024-28938 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

Visual Studio Elevation of Privilege Vulnerability

CVE-2024-20656 7.8 - High - January 09, 2024

Visual Studio Elevation of Privilege Vulnerability

Visual Studio Denial of Service Vulnerability

CVE-2023-36042 5.5 - Medium - November 14, 2023

Visual Studio Denial of Service Vulnerability

Resource Exhaustion

Visual Studio Remote Code Execution Vulnerability

CVE-2023-36794 7.8 - High - September 12, 2023

Visual Studio Remote Code Execution Vulnerability

Visual Studio Remote Code Execution Vulnerability

CVE-2023-36796 7.8 - High - September 12, 2023

Visual Studio Remote Code Execution Vulnerability

Visual Studio Remote Code Execution Vulnerability

CVE-2023-36793 7.8 - High - September 12, 2023

Visual Studio Remote Code Execution Vulnerability

Visual Studio Remote Code Execution Vulnerability

CVE-2023-36792 7.8 - High - September 12, 2023

Visual Studio Remote Code Execution Vulnerability

Visual Studio Elevation of Privilege Vulnerability

CVE-2023-36759 6.7 - Medium - September 12, 2023

Visual Studio Elevation of Privilege Vulnerability

Visual Studio Tools for Office Runtime Spoofing Vulnerability

CVE-2023-36897 6.5 - Medium - August 08, 2023

Visual Studio Tools for Office Runtime Spoofing Vulnerability

.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

CVE-2023-24897 7.8 - High - June 14, 2023

.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

Visual Studio Information Disclosure Vulnerability

CVE-2023-33139 5.5 - Medium - June 14, 2023

Visual Studio Information Disclosure Vulnerability

Visual Studio Remote Code Execution Vulnerability

CVE-2023-28296 7.8 - High - April 11, 2023

Visual Studio Remote Code Execution Vulnerability

Visual Studio Spoofing Vulnerability

CVE-2023-28299 5.5 - Medium - April 11, 2023

Visual Studio Spoofing Vulnerability

Visual Studio Information Disclosure Vulnerability

CVE-2023-28263 5.5 - Medium - April 11, 2023

Visual Studio Information Disclosure Vulnerability

Visual Studio Elevation of Privilege Vulnerability

CVE-2023-28262 7.8 - High - April 11, 2023

Visual Studio Elevation of Privilege Vulnerability

Visual Studio Remote Code Execution Vulnerability

CVE-2023-21815 7.8 - High - February 14, 2023

Visual Studio Remote Code Execution Vulnerability

Visual Studio Denial of Service Vulnerability

CVE-2023-21567 5.6 - Medium - February 14, 2023

Visual Studio Denial of Service Vulnerability

Visual Studio Elevation of Privilege Vulnerability

CVE-2023-21566 7.8 - High - February 14, 2023

Visual Studio Elevation of Privilege Vulnerability

.NET and Visual Studio Remote Code Execution Vulnerability

CVE-2023-21808 7.8 - High - February 14, 2023

.NET and Visual Studio Remote Code Execution Vulnerability

Visual Studio Remote Code Execution Vulnerability

CVE-2023-23381 7.8 - High - February 14, 2023

Visual Studio Remote Code Execution Vulnerability

Visual Studio Remote Code Execution Vulnerability

CVE-2022-41119 7.8 - High - November 09, 2022

Visual Studio Remote Code Execution Vulnerability

NuGet Client Elevation of Privilege Vulnerability

CVE-2022-41032 7.8 - High - October 11, 2022

NuGet Client Elevation of Privilege Vulnerability

.NET Core and Visual Studio Denial of Service Vulnerability

CVE-2022-38013 7.5 - High - September 13, 2022

.NET Core and Visual Studio Denial of Service Vulnerability

Visual Studio Remote Code Execution Vulnerability

CVE-2022-35827 8.8 - High - August 09, 2022

Visual Studio Remote Code Execution Vulnerability

Visual Studio Remote Code Execution Vulnerability

CVE-2022-35777 8.8 - High - August 09, 2022

Visual Studio Remote Code Execution Vulnerability

Visual Studio Remote Code Execution Vulnerability

CVE-2022-35825 8.8 - High - August 09, 2022

Visual Studio Remote Code Execution Vulnerability

Visual Studio Remote Code Execution Vulnerability

CVE-2022-35826 8.8 - High - August 09, 2022

Visual Studio Remote Code Execution Vulnerability

.NET and Visual Studio Information Disclosure Vulnerability

CVE-2022-30184 5.5 - Medium - June 15, 2022

.NET and Visual Studio Information Disclosure Vulnerability

.NET and Visual Studio Denial of Service Vulnerability

CVE-2022-23267 7.5 - High - May 10, 2022

.NET and Visual Studio Denial of Service Vulnerability

.NET and Visual Studio Denial of Service Vulnerability

CVE-2022-29117 7.5 - High - May 10, 2022

.NET and Visual Studio Denial of Service Vulnerability

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Fedora Project Fedora or by Microsoft? Click the Watch button to subscribe.

Microsoft
Vendor

Microsoft Visual Studio 2019
Product

Microsoft Visual Studio 2019

Don't miss out!

By the Year

Recent Microsoft Visual Studio 2019 Security Vulnerabilities

Improper neutralization of special elements used in a command ('command injection') in Visual Studio CVE-2025-32702 7.8 - High - May 13, 2025

Insufficient granularity of access control in Visual Studio CVE-2025-32703 5.5 - Medium - May 13, 2025

Uncontrolled search path element in Visual Studio CVE-2025-24998 7.3 - High - March 11, 2025

Uncontrolled search path element in Visual Studio CVE-2025-25003 7.3 - High - March 11, 2025

Visual Studio Installer Elevation of Privilege Vulnerability CVE-2025-21206 7.3 - High - February 11, 2025

.NET and Visual Studio Remote Code Execution Vulnerability CVE-2025-21172 7.5 - High - January 14, 2025

Visual Studio Remote Code Execution Vulnerability CVE-2025-21178 8.8 - High - January 14, 2025

Visual Studio Collector Service Denial of Service Vulnerability CVE-2024-43603 5.5 - Medium - October 08, 2024

Visual C++ Redistributable Installer Elevation of Privilege Vulnerability CVE-2024-43590 7.8 - High - October 08, 2024

Visual Studio Elevation of Privilege Vulnerability CVE-2024-29060 6.7 - Medium - June 11, 2024

Visual Studio Remote Code Execution Vulnerability CVE-2024-30052 4.7 - Medium - June 11, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability CVE-2024-28929 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability CVE-2024-28930 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability CVE-2024-28931 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability CVE-2024-28932 - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability CVE-2024-28933 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability CVE-2024-28934 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability CVE-2024-28935 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability CVE-2024-28936 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability CVE-2024-28937 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability CVE-2024-28938 8.8 - High - April 09, 2024

Visual Studio Elevation of Privilege Vulnerability CVE-2024-20656 7.8 - High - January 09, 2024

Visual Studio Denial of Service Vulnerability CVE-2023-36042 5.5 - Medium - November 14, 2023

Visual Studio Remote Code Execution Vulnerability CVE-2023-36794 7.8 - High - September 12, 2023

Visual Studio Remote Code Execution Vulnerability CVE-2023-36796 7.8 - High - September 12, 2023

Visual Studio Remote Code Execution Vulnerability CVE-2023-36793 7.8 - High - September 12, 2023

Visual Studio Remote Code Execution Vulnerability CVE-2023-36792 7.8 - High - September 12, 2023

Visual Studio Elevation of Privilege Vulnerability CVE-2023-36759 6.7 - Medium - September 12, 2023

Visual Studio Tools for Office Runtime Spoofing Vulnerability CVE-2023-36897 6.5 - Medium - August 08, 2023

.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability CVE-2023-24897 7.8 - High - June 14, 2023

Visual Studio Information Disclosure Vulnerability CVE-2023-33139 5.5 - Medium - June 14, 2023

Visual Studio Remote Code Execution Vulnerability CVE-2023-28296 7.8 - High - April 11, 2023

Visual Studio Spoofing Vulnerability CVE-2023-28299 5.5 - Medium - April 11, 2023

Visual Studio Information Disclosure Vulnerability CVE-2023-28263 5.5 - Medium - April 11, 2023

Visual Studio Elevation of Privilege Vulnerability CVE-2023-28262 7.8 - High - April 11, 2023

Visual Studio Remote Code Execution Vulnerability CVE-2023-21815 7.8 - High - February 14, 2023

Visual Studio Denial of Service Vulnerability CVE-2023-21567 5.6 - Medium - February 14, 2023

Visual Studio Elevation of Privilege Vulnerability CVE-2023-21566 7.8 - High - February 14, 2023

.NET and Visual Studio Remote Code Execution Vulnerability CVE-2023-21808 7.8 - High - February 14, 2023

Visual Studio Remote Code Execution Vulnerability CVE-2023-23381 7.8 - High - February 14, 2023

Visual Studio Remote Code Execution Vulnerability CVE-2022-41119 7.8 - High - November 09, 2022

NuGet Client Elevation of Privilege Vulnerability CVE-2022-41032 7.8 - High - October 11, 2022

.NET Core and Visual Studio Denial of Service Vulnerability CVE-2022-38013 7.5 - High - September 13, 2022

Visual Studio Remote Code Execution Vulnerability CVE-2022-35827 8.8 - High - August 09, 2022

Visual Studio Remote Code Execution Vulnerability CVE-2022-35777 8.8 - High - August 09, 2022

Visual Studio Remote Code Execution Vulnerability CVE-2022-35825 8.8 - High - August 09, 2022

Visual Studio Remote Code Execution Vulnerability CVE-2022-35826 8.8 - High - August 09, 2022

.NET and Visual Studio Information Disclosure Vulnerability CVE-2022-30184 5.5 - Medium - June 15, 2022

.NET and Visual Studio Denial of Service Vulnerability CVE-2022-23267 7.5 - High - May 10, 2022

.NET and Visual Studio Denial of Service Vulnerability CVE-2022-29117 7.5 - High - May 10, 2022

Stay on top of Security Vulnerabilities

Microsoft Vendor

Microsoft Visual Studio 2019Product

Improper neutralization of special elements used in a command ('command injection') in Visual Studio

CVE-2025-32702 7.8 - High - May 13, 2025

Insufficient granularity of access control in Visual Studio

CVE-2025-32703 5.5 - Medium - May 13, 2025

Uncontrolled search path element in Visual Studio

CVE-2025-24998 7.3 - High - March 11, 2025

Uncontrolled search path element in Visual Studio

CVE-2025-25003 7.3 - High - March 11, 2025

Visual Studio Installer Elevation of Privilege Vulnerability

CVE-2025-21206 7.3 - High - February 11, 2025

.NET and Visual Studio Remote Code Execution Vulnerability

CVE-2025-21172 7.5 - High - January 14, 2025

Visual Studio Remote Code Execution Vulnerability

CVE-2025-21178 8.8 - High - January 14, 2025

Visual Studio Collector Service Denial of Service Vulnerability

CVE-2024-43603 5.5 - Medium - October 08, 2024

Visual C++ Redistributable Installer Elevation of Privilege Vulnerability

CVE-2024-43590 7.8 - High - October 08, 2024

Visual Studio Elevation of Privilege Vulnerability

CVE-2024-29060 6.7 - Medium - June 11, 2024

Visual Studio Remote Code Execution Vulnerability

CVE-2024-30052 4.7 - Medium - June 11, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

CVE-2024-28929 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

CVE-2024-28930 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

CVE-2024-28931 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

CVE-2024-28932 - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

CVE-2024-28933 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

CVE-2024-28934 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

CVE-2024-28935 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

CVE-2024-28936 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

CVE-2024-28937 8.8 - High - April 09, 2024

Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

CVE-2024-28938 8.8 - High - April 09, 2024

Visual Studio Elevation of Privilege Vulnerability

CVE-2024-20656 7.8 - High - January 09, 2024

Visual Studio Denial of Service Vulnerability

CVE-2023-36042 5.5 - Medium - November 14, 2023

Visual Studio Remote Code Execution Vulnerability

CVE-2023-36794 7.8 - High - September 12, 2023

Visual Studio Remote Code Execution Vulnerability

CVE-2023-36796 7.8 - High - September 12, 2023

Visual Studio Remote Code Execution Vulnerability

CVE-2023-36793 7.8 - High - September 12, 2023

Visual Studio Remote Code Execution Vulnerability

CVE-2023-36792 7.8 - High - September 12, 2023

Visual Studio Elevation of Privilege Vulnerability

CVE-2023-36759 6.7 - Medium - September 12, 2023

Visual Studio Tools for Office Runtime Spoofing Vulnerability

CVE-2023-36897 6.5 - Medium - August 08, 2023

.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability

CVE-2023-24897 7.8 - High - June 14, 2023

Visual Studio Information Disclosure Vulnerability

CVE-2023-33139 5.5 - Medium - June 14, 2023

Visual Studio Remote Code Execution Vulnerability

CVE-2023-28296 7.8 - High - April 11, 2023

Visual Studio Spoofing Vulnerability

CVE-2023-28299 5.5 - Medium - April 11, 2023

Visual Studio Information Disclosure Vulnerability

CVE-2023-28263 5.5 - Medium - April 11, 2023

Visual Studio Elevation of Privilege Vulnerability

CVE-2023-28262 7.8 - High - April 11, 2023

Visual Studio Remote Code Execution Vulnerability

CVE-2023-21815 7.8 - High - February 14, 2023

Visual Studio Denial of Service Vulnerability

CVE-2023-21567 5.6 - Medium - February 14, 2023

Visual Studio Elevation of Privilege Vulnerability

CVE-2023-21566 7.8 - High - February 14, 2023

.NET and Visual Studio Remote Code Execution Vulnerability

CVE-2023-21808 7.8 - High - February 14, 2023

Visual Studio Remote Code Execution Vulnerability

CVE-2023-23381 7.8 - High - February 14, 2023

Visual Studio Remote Code Execution Vulnerability

CVE-2022-41119 7.8 - High - November 09, 2022

NuGet Client Elevation of Privilege Vulnerability

CVE-2022-41032 7.8 - High - October 11, 2022

.NET Core and Visual Studio Denial of Service Vulnerability

CVE-2022-38013 7.5 - High - September 13, 2022

Visual Studio Remote Code Execution Vulnerability

CVE-2022-35827 8.8 - High - August 09, 2022

Visual Studio Remote Code Execution Vulnerability

CVE-2022-35777 8.8 - High - August 09, 2022

Visual Studio Remote Code Execution Vulnerability

CVE-2022-35825 8.8 - High - August 09, 2022

Visual Studio Remote Code Execution Vulnerability

CVE-2022-35826 8.8 - High - August 09, 2022

.NET and Visual Studio Information Disclosure Vulnerability

CVE-2022-30184 5.5 - Medium - June 15, 2022

.NET and Visual Studio Denial of Service Vulnerability

CVE-2022-23267 7.5 - High - May 10, 2022

.NET and Visual Studio Denial of Service Vulnerability

CVE-2022-29117 7.5 - High - May 10, 2022

Microsoft
Vendor

Microsoft Visual Studio 2019
Product