CVE-2018-1037

Summary

An information disclosure vulnerability exists when Visual Studio improperly discloses limited contents of uninitialized memory while compiling program database (PDB) files, aka "Microsoft Visual Studio Information Disclosure Vulnerability." This affects Microsoft Visual Studio.

Affected Software

VendorProductVersion RangeStatus
MicrosoftMicrosoft Visual Studio2010 Service Pack 1affected
MicrosoftMicrosoft Visual Studio2012 Update 5affected
MicrosoftMicrosoft Visual Studio2013 Update 5affected
MicrosoftMicrosoft Visual Studio2015 Update 3affected
MicrosoftMicrosoft Visual Studio2017affected
MicrosoftMicrosoft Visual Studio2017 Version 15.6.6affected
MicrosoftMicrosoft Visual Studio2017 Version 15.7 Previewaffected

Weaknesses

  • Information Disclosure

ADP Enrichment

CVE Program Container

Additional References

References