The Microsoft Visual Studio Products are affected by a remote code execution vulnerability in .NET Core 3.1, .NET 6.0, and .NET 7.0, where a malicious actor could cause a user to run arbitrary code as a result of parsing maliciously crafted xps files.

Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.Read More