CVE-2021-43877

Summary

ASP.NET Core and Visual Studio Elevation of Privilege Vulnerability

Affected Software

VendorProductVersion RangeStatus
MicrosoftMicrosoft Visual Studio 2019 version 16.7 (includes 16.0 – 16.6)16.0.0 < 16.7.23affected
MicrosoftMicrosoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)15.0.0 < 16.9.15affected
MicrosoftMicrosoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)16.11.0 < 16.11.8affected
MicrosoftMicrosoft Visual Studio 2022 version 17.017.0.0 < 17.0.3affected
MicrosoftASP.NET Core 3.13.0 < 3.1.22affected
MicrosoftASP.NET Core 5.05.0 < 5.0.13affected
MicrosoftASP.NET Core 6.06.0 < 6.0.101affected
MicrosoftMicrosoft Visual Studio 2022 version 17.117.0.0 < 17.1.4affected

Weaknesses

  • Elevation of Privilege

ADP Enrichment

CVE Program Container

Additional References

References