CVE-2021-27064 - Visual Studio Installer Elevation of Privilege Vulnerability

CVE-2021-27064

Summary

Visual Studio Installer Elevation of Privilege Vulnerability

References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-27064

Vulnerable Configurations

cpe:2.3:a:microsoft:visual_studio_2019:16.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.1:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.1:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.2:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.2:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.3:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.3:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.4:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.4:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.5:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.5:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.6:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.6:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.7:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.7:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.8:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.8:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.9:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.9:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.10:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.10:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.11:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.11:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.12:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.12:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.13:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.13:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.14:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.14:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.15:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.15:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.16:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.0.16:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.1:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.1:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.1.1:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.1.1:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.1.2:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.1.2:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.1.3:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.1.3:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.1.4:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.1.4:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.1.5:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.1.5:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.1.6:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.1.6:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.2:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.2:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.2.1:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.2.1:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.2.2:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.2.2:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.2.3:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.2.3:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.2.4:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.2.4:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.3:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.3:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.3.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.3.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.3.1:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.3.1:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.3.2:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.3.2:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.3.3:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.3.3:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.3.4:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.3.4:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.3.5:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.3.5:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.3.6:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.3.6:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.3.7:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.3.7:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.3.8:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.3.8:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.3.9:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.3.9:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.4:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.4:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2017:15.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2017:15.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2017:15.0:26228.04:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2017:15.0:26228.04:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2017:15.0:26228.09:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2017:15.0:26228.09:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.8:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.8:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.8.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.8.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.8.1:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.8.1:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.8.2:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.8.2:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.8.3:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.8.3:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.8.4:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.8.4:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.8.5:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.8.5:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.8.6:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.8.6:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.8.7:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.8.7:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.9:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.6:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.6:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.6.1:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.6.1:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.6.2:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.6.2:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.6.3:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.6.3:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.6.4:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.6.4:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.6.5:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.6.5:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.7:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:16.7:*:*:*:*:*:*:*

CVSS

Base:	4.6 (as of 29-12-2023 - 01:15)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:L/AC:L/Au:N/C:P/I:P/A:P

Last major update

29-12-2023 - 01:15

Published

13-04-2021 - 20:15

Last modified

29-12-2023 - 01:15