CVE-2025-29803

Visual Studio Tools for Applications and SQL Server Management Studio Elevation of Privilege Vulnerability

Description

Uncontrolled search path element in Visual Studio Tools for Applications and SQL Server Management Studio allows an authorized attacker to elevate privileges locally.

INFO

Published Date :

2025-04-12T01:32:36.336Z

Last Modified :

2026-02-13T19:33:28.832Z

Source :

microsoft

AFFECTED PRODUCTS

The following products are affected by CVE-2025-29803 vulnerability.

Vendors	Products
Microsoft	.vsta Sdk Sql Server Management Studio Visual Studio Tools For Applications Visual Studio Tools For Applications 2019 Visual Studio Tools For Applications 2019 Sdk Visual Studio Tools For Applications 2022 Visual Studio Tools For Applications 2022 Sdk

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-29803.

URL	Resource
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29803

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact