An attacker who successfully exploited this vulnerability could compromise the access tokens, exposing security and privacy risks. It is, therefore, affected by multiple vulnerabilities : - A spoofing vulnerability exists in Microsoft Visual Studio as it includes a reply URL that is not secured by SSL. Description The Microsoft Visual Studio Products are missing security updates. Synopsis The Microsoft Visual Studio Products are affected by multiple vulnerabilities. Severity display preferences can be toggled in the settings dropdown. Plugins that do not have a CVSS v3 score will fall back to CVSS v2 for calculating severity. The calculated severity for Plugins has been updated to use CVSS v3 by default.
0 kommentar(er)
