Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

32 matches found

NVD
NVDadded 4 hours ago5 views

CVE-2026-12856

A flaw was found in the vscode-java extension, which provides Java language support for Visual Studio Code. The extension incorrectly trusts all Markdown content in JavaDoc hovers, allowing a malicious Java file to include hidden commands. If a user clicks a specially crafted link within a JavaDo...

8.8CVSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 6 hours ago3 views

CVE-2026-12856

A flaw was found in the vscode-java extension, which provides Java language support for Visual Studio Code. The extension incorrectly trusts all Markdown content in JavaDoc hovers, allowing a malicious Java file to include hidden commands. If a user clicks a specially crafted link within a JavaDo...

8.8CVSS6.1AI score
Exploits0References4
CVE
CVEadded 6 hours ago10 views

CVE-2026-12856

The CVE-2026-12856 entry concerns the vscode-java extension for Visual Studio Code. The vulnerability arises because the extension trusts all Markdown content in JavaDoc hovers, enabling a malicious Java file to include hidden commands. When a user clicks a specially crafted link in a JavaDoc hov...

8.8CVSS6.1AI score
Exploits0References3
EUVD
EUVDadded 6 hours ago6 views

EUVD-2026-40084

A flaw was found in the vscode-java extension, which provides Java language support for Visual Studio Code. The extension incorrectly trusts all Markdown content in JavaDoc hovers, allowing a malicious Java file to include hidden commands. If a user clicks a specially crafted link within a JavaDo...

8.8CVSS6.1AI score
Exploits0References3
RedhatCVE
RedhatCVEadded 6 hours ago5 views

CVE-2026-12856

A flaw was found in the vscode-java extension, which provides Java language support for Visual Studio Code. The extension incorrectly trusts all Markdown content in JavaDoc hovers, allowing a malicious Java file to include hidden commands. If a user clicks a specially crafted link within a JavaDo...

8.8CVSS6.1AI score
Exploits0References4
Metasploit
Metasploitadded 2026/01/22 6:57 p.m.367 views

Burp Extension Persistence

This module adds a java based malicious extension to the Burp Suite configuration file. When burp is opened, the extension will be loaded and the payload will be executed. Tested against Burp Suite Community Edition v2024.9.4, on Ubuntu Desktop 24.04. Tested against Burp Suite Community Edition...

5.9AI score
Exploits0
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2021-13855

Malware in sbrugna...

9.3CVSS7.5AI score0.61357EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.8 views

EUVD-2020-9113

Malware in sbrugna...

7.8CVSS7.4AI score0.03101EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2023/02/15 6:8 a.m.5 views

SUSE CVE-2008-2086

Sun Java Web Start and Java Plug-in for JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.218 and earlier allow remote attackers to execute arbitrary code via a crafted jnlp file that modifies the 1 java.home, 2 java.ext.dirs, or 3 user.home System...

9.3CVSS7.9AI score0.07319EPSS
Exploits1References8
Check Point Advisories
Check Point Advisoriesadded 2022/09/20 12:0 a.m.4 views

Microsoft Visual Studio Code Remote Code Execution (CVE-2021-27084)

A remote code execution vulnerability exists in the Maven for Java Extension for Microsoft Visual Studio Code. The vulnerability is due to a design weakness. A remote attacker can exploit this vulnerability by enticing a user to open a maliciously crafted Java Maven project folder...

9.3CVSS3.9AI score0.61357EPSS
Exploits0
Positive Technologies
Positive Technologiesadded 2021/04/13 12:0 a.m.5 views

PT-2021-2741 · Microsoft · Vscode-Maven

Name of the Vulnerable Software and Affected Versions: Maven for Java Extension vscode-maven versions affected versions not specified Description: The issue is related to incorrect code generation management in the Maven for Java Extension for Microsoft Visual Studio Code. Exploitation of this...

7.8CVSS7.6AI score0.63034EPSS
Exploits0References6
BDU FSTEC
BDU FSTECadded 2021/03/17 12:0 a.m.4 views

The vulnerability of the Microsoft Visual Studio Code Java Extension relates to improper code generation management, allowing an attacker to execute arbitrary code.

The vulnerability of the Microsoft Visual Studio Code Java Extension relates to improper code generation management. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

9CVSS7.6AI score0.61357EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2021/03/12 12:0 a.m.45 views

Security Update for Microsoft Visual Studio Code Java Extension Pack Extension (March 2021)

Microsoft Visual Studio Code Java Extension Pack could allow a remote attacker to execute arbitrary code on the system. By persuading a victim to open specially-crafted content, an attacker could exploit this vulnerability to execute arbitrary code on the system with privileges of the victim. Not...

9.3CVSS8.1AI score0.61357EPSS
Exploits0References3
OSV
OSVadded 2021/03/11 4:15 p.m.3 views

CVE-2021-27084

Visual Studio Code Java Extension Pack Remote Code Execution Vulnerability...

7.8CVSS7.2AI score0.61357EPSS
Exploits0References1
Prion
Prionadded 2021/03/11 4:15 p.m.23 views

Remote code execution

Visual Studio Code Java Extension Pack Remote Code Execution Vulnerability...

9.3CVSS7.8AI score0.61357EPSS
Exploits0References1
Cvelist
Cvelistadded 2021/03/11 3:47 p.m.17 views

CVE-2021-27084 Visual Studio Code Java Extension Pack Remote Code Execution Vulnerability

...

7.8CVSS8AI score0.61357EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2021/03/11 3:47 p.m.17 views

CVE-2021-27084 Visual Studio Code Java Extension Pack Remote Code Execution Vulnerability

...

7.8CVSS6.8AI score0.61357EPSS
Exploits0References1
Microsoft CVE
Microsoft CVEadded 2021/03/09 8:0 a.m.44 views

Visual Studio Code Java Extension Pack Remote Code Execution Vulnerability

...

9.3CVSS7.7AI score0.61357EPSS
Exploits0
Positive Technologies
Positive Technologiesadded 2021/03/09 12:0 a.m.5 views

PT-2021-2297 · Microsoft · Visual Studio Code Java Extension Pack

Name of the Vulnerable Software and Affected Versions: Visual Studio Code Java Extension Pack affected versions not specified Description: The issue is related to incorrect code generation management in the Visual Studio Code Java Extension Pack. Exploitation of this issue may allow a remote...

9.3CVSS7.7AI score0.61357EPSS
Exploits0References7
Kaspersky
Kasperskyadded 2021/03/09 12:0 a.m.46 views

KLA12110 Multiple vulnerabilities in Microsoft Developer Tools

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Visual Studio Code ESLint Extension can be exploited remotely to...

9.3CVSS8.9AI score0.88644EPSS
Exploits5References9
Rows per page
Query Builder