7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.7 High
AI Score
Confidence
High
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.903 High
EPSS
Percentile
98.8%
03/09/2021
Critical
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to execute arbitrary code.
Public exploits exist for this vulnerability.
Visual Studio Code Remote - Containers Extension
Microsoft Quantum Development Kit for Visual Studio Code
Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)
Microsoft Visual Studio 2019 version 16.4 (includes 16.0 - 16.3)
Visual Studio Code - Java Extension Pack
Visual Studio Code
Microsoft Visual Studio 2019 version 16.8 (includes 16.0 - 16.7)
Microsoft Visual Studio Code ESLint extension
Microsoft Visual Studio 2019 version 16.7 (includes 16.0 β 16.6)
Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
CVE-2021-27081
CVE-2021-27060
CVE-2021-21300
CVE-2021-27082
CVE-2021-27083
CVE-2021-27084
ACE
CVE-2021-270817.8Critical
CVE-2021-270607.8Critical
CVE-2021-213007.5Critical
CVE-2021-270827.8Critical
CVE-2021-270837.8Critical
CVE-2021-270847.8Critical
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21300
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27060
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27081
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27082
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27083
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-27084
nvd.nist.gov/vuln/detail/CVE-2021-21300
nvd.nist.gov/vuln/detail/CVE-2021-27060
nvd.nist.gov/vuln/detail/CVE-2021-27081
nvd.nist.gov/vuln/detail/CVE-2021-27082
nvd.nist.gov/vuln/detail/CVE-2021-27083
nvd.nist.gov/vuln/detail/CVE-2021-27084
portal.msrc.microsoft.com/en-us/security-guidance
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/class/Exploit/
threats.kaspersky.com/en/product/Microsoft-Visual-Studio/
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.7 High
AI Score
Confidence
High
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.903 High
EPSS
Percentile
98.8%