Описание (на английском; русское — в БДУ выше)
Uncontrolled search path element in Visual Studio Tools for Applications and SQL Server Management Studio allows an authorized attacker to elevate privileges locally.
Затрагиваемое ПО
Microsoft Sql server management studioMicrosoft Visual studio tools for applications 2019Microsoft Visual studio tools for applications 2019 sdkMicrosoft Visual studio tools for applications 2022Microsoft Visual studio tools for applications 2022 sdk
CVSS
| Балл | 7.3 — высокая |
| Вектор | CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H |
Источники
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29803