1291 matches found
EUVD-2022-7108
Malicious code in bioql PyPI...
EUVD-2023-40787
Malicious code in bioql PyPI...
CVE-2025-61590
Cursor is a code editor built for programming with AI. Versions 1.6 and below are vulnerable to Remote Code Execution RCE attacks through Visual Studio Code Workspaces. Workspaces allow users to open more than a single folder and save specific settings pretty similar to .vscode/settings.json for...
EUVD-2025-32314
Cursor is a code editor built for programming with AI. Versions 1.6 and below are vulnerable to Remote Code Execution RCE attacks through Visual Studio Code Workspaces. Workspaces allow users to open more than a single folder and save specific settings pretty similar to .vscode/settings.json for...
Cursor 代码注入漏洞
Cursor is an AI code editor from the Cursor open source. A code injection vulnerability exists in Cursor 1.6 and earlier versions, which stems from an attacker being able to modify workspace settings via Visual Studio Code Workspaces, potentially leading to remote code execution...
PT-2025-40535
Name of the Vulnerable Software and Affected Versions Cursor versions 1.6 and below Description Cursor, a code editor for programming with AI, is susceptible to Remote Code Execution RCE attacks through Visual Studio Code Workspaces. Workspaces allow users to save specific settings for folders or...
Minecraft RCON Terminal 安全漏洞
Minecraft RCON Terminal is an extension for Visual Studio Code by Jake T Cooper Personal Developer. A security vulnerability exists in Minecraft RCON Terminal version 2.0.6 and earlier, which stems from the use of the VS Code Configuration API to store passwords in plaintext...
Empowering defenders in the era of agentic AI with Microsoft Sentinel
Microsoft unveils a new wave of security innovation—delivering an agentic platform to protect organizations at scale We are living through a turning point in how organizations work and defend themselves. Across industries, “Frontier Firms” are emerging; these are businesses where humans and AI...
Security Update for Microsoft Visual Studio Code (September 2025)
The version of Microsoft Visual Studio Code installed on the remote host is prior to 1.104.0. It is, therefore, affected by multiple vulnerabilities: - Ai command injection in Agentic AI and Visual Studio Code allows an unauthorized attacker to execute code over a network. CVE-2025-55319 Note tha...
Chinese TA415 Uses VS Code Remote Tunnels to Spy on U.S. Economic Policy Experts
A China-aligned threat actor known as TA415 has been attributed to spear-phishing campaigns targeting the U.S. government, think tanks, and academic organizations utilizing U.S.-China economic-themed lures. "In this activity, the group masqueraded as the current Chair of the Select Committee on...
Unspecified Vulnerability in Microsoft Visual Studio Code (CNVD-2025-22193)
Microsoft Visual Studio Code is an open source code editor from Microsoft USA. A security vulnerability exists in Microsoft Visual Studio Code that originates from insufficiently filtered or validated user-supplied data and can be exploited by an attacker to remotely execute arbitrary code...
CVE-2025-55319
Ai command injection in Agentic AI and Visual Studio Code allows an unauthorized attacker to execute code over a network...
CVE-2025-55319
Ai command injection in Agentic AI and Visual Studio Code allows an unauthorized attacker to execute code over a network...
CVE-2025-55319
Ai command injection in Agentic AI and Visual Studio Code allows an unauthorized attacker to execute code over a network...
CVE-2025-55319 Agentic AI and Visual Studio Code Remote Code Execution Vulnerability
...
CVE-2025-55319 Agentic AI and Visual Studio Code Remote Code Execution Vulnerability
...
CVE-2025-55319
CVE-2025-55319 corresponds to a remote code execution issue involving Agentic AI in Microsoft Visual Studio Code. The vulnerability allows an unauthenticated, network-based attacker to execute arbitrary code on the affected host via the Agentic AI functionality integrated with VS Code. The CVE is...
Agentic AI and Visual Studio Code Remote Code Execution Vulnerability
Ai command injection in Agentic AI and Visual Studio Code allows an unauthorized attacker to execute code over a network...
Microsoft Visual Studio Code 安全漏洞
Microsoft Visual Studio Code is an open source code editor from Microsoft USA. A security vulnerability exists in Microsoft Visual Studio Code that originates from insufficiently filtered or validated user-supplied data and can be exploited by an attacker to remotely execute arbitrary code...
PT-2025-37270
Name of the Vulnerable Software and Affected Versions: Agentic AI and Visual Studio Code affected versions not specified Description: An AI command injection flaw exists in Agentic AI and Visual Studio Code, allowing an unauthorized attacker to execute code over a network via crafted prompts...