CVE-2019-1351: CVE-2019-1351

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2019-1351

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

A tampering vulnerability exists when Git for Visual Studio improperly handles virtual drive paths, aka 'Git for Visual Studio Tampering Vulnerability'.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Git for Visual Studio 输入验证错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Git for Visual Studio中存在安全漏洞，该漏洞源于程序不正确地处理虚拟驱动器路径。攻击者可利用该漏洞将任意文件和目录写入到受影响系统中的特定位置。以下产品及版本受到影响：Microsoft Visual Studio 2017 15.0版本，2017 15.1版本至2017 15.9版本，2017 16.0版本，2019 16.0版本至2019 16.4版本。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE
Microsoft	Microsoft Visual Studio 2017 version 15.9 (includes 15.1 - 15.8)	unspecified	-
Microsoft	Microsoft Visual Studio 2017	15.0	-
Microsoft	Microsoft Visual Studio 2019	16.0	-
Microsoft	Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)	unspecified	-

II. Public POCs for CVE-2019-1351

#	POC Description	Source Link	Shenlong Link
1	Prueba de CVE-2019-1351	https://github.com/JonasDL/PruebaCVE20191351	POC Details

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2019-1351

Please Login to view more intelligence information

https://public-inbox.org/git/xmqqr21cqcn9.fsf%40gitster-ct.c.googlers.com/x_refsource_MISC
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1351x_refsource_MISC
https://security.gentoo.org/glsa/202003-30vendor-advisoryx_refsource_GENTOO
http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00056.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00003.htmlvendor-advisoryx_refsource_SUSE
https://nvd.nist.gov/vuln/detail/CVE-2019-1351

New Vulnerabilities

Product: Microsoft Visual Studio 2017 version 15.9 (includes 15.1 - 15.8)

Vendor: Microsoft

V. Comments for CVE-2019-1351

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2019-1351

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2019-1351

III. Intelligence Information for CVE-2019-1351

New Vulnerabilities

V. Comments for CVE-2019-1351

Leave a comment