74 matches found
Security Update for Microsoft Visual Studio Code Spring Boot Tools Extension (CVE-2022-31691)
The Microsoft Visual Studio Code Spring Boot Tools Extension is version 1.39.0 or below. It is, therefore, affected by a remote code execution vulnerability. The extension uses the Snakeyaml library for YAML editing support. This library allows for some special syntax in the YAML that under certa...
Security Update for Microsoft Visual Studio Code GitHub Pull Requests and Isssues Extension (July 2023)
The Microsoft Visual Studio Code GitHub Pull Requests and Issues Extension is prior to version 0.66.2. It is, therefore, affected by a remote code execution vulnerability. By persuading a victim to open specially-crafted content, an attacker could exploit this vulnerability to execute arbitrary...
Security Update for Microsoft Visual Studio Code (June 2023)
The version of Microsoft Visual Studio Code installed on the remote Windows host is prior to 1.79.1. It is, therefore, affected by a session spoofing vulnerability. An attacker can exploit this to perform actions with the privileges of another user. %NASLMINLEVEL 80900 Tenable, Inc. The descripti...
Microsoft Visual Studio Code 安全漏洞
Microsoft Visual Studio Code is an open source code editor from Microsoft USA. A security vulnerability exists in Microsoft Visual Studio Code. An attacker exploits the vulnerability to perform spoofing attacks...
Microsoft Visual Studio Code < 1.77.2 RCE
The version of Microsoft Visual Studio Code installed on the remote host is prior to 1.77.2 It is, therefore, affected by a remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. Note that Nessus has not tested for...
Security Update for Microsoft Visual Studio Code (January 2023)
The version of Microsoft Visual Studio Code installed on the remote host is prior to 1.74.3 It is, therefore, affected by a remote execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. Note that Nessus has not tested for these...
Security Update for Microsoft Visual Studio Code (October 2022)
The version of Microsoft Visual Studio Code installed on the remote host is prior to 1.72.1. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands...
Microsoft Visual Studio Code Remote Code Execution (CVE-2021-27084)
A remote code execution vulnerability exists in the Maven for Java Extension for Microsoft Visual Studio Code. The vulnerability is due to a design weakness. A remote attacker can exploit this vulnerability by enticing a user to open a maliciously crafted Java Maven project folder...
Security Update for Microsoft Visual Studio Code (September 2022)
The version of Microsoft Visual Studio Code installed on the remote host is prior to 1.17.1 It is, therefore, affected by privilege escalation vulnerability. An authenticated, local attacker can exploit this to escalate their privileges of an affected system to that of another user of Visual Stud...
Microsoft Visual Studio Code Remote Code Execution Vulnerability (CNVD-2022-60132)
Microsoft Visual Studio Code is an open source code editor from Microsoft USA. A remote code execution vulnerability exists in Microsoft Visual Studio Code, which arises from a failure of a networked system or product to properly filter specific elements of externally entered data during the...
Security Update for Microsoft Visual Studio Code (May 2022)
The version of Microsoft Visual Studio Code installed on the remote Windows host is prior to 1.67.1. It is, therefore, affected by a remote code execution vulnerability. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version...
Microsoft Visual Studio Code 输入验证错误漏洞
Microsoft Visual Studio Code is an open source code editor from Microsoft USA. A remote code execution vulnerability exists in Microsoft Visual Studio Code, which arises from a failure of a networked system or product to properly filter specific elements of externally entered data during the...
Security Update for Microsoft Visual Studio Code (April 2022)
The version of Microsoft Visual Studio Code installed on the remote Windows host is prior to 1.66.2. It is, therefore, affected by privilege escalation vulnerability. An authenticated, local attacker can exploit this to escalate their privileges of an affected system. Note that Nessus has not...
Microsoft Visual Studio 安全漏洞
Microsoft Visual Studio is a family of development tool suites from Microsoft, and a largely complete development toolset that includes most of the tools needed throughout the software life cycle. An elevation of privilege vulnerability exists in Microsoft Visual Studio Code, which stems from...
Microsoft Visual Studio Code 安全漏洞
Microsoft Visual Studio is a family of development tool suites from Microsoft, and a largely complete development toolset that includes most of the tools needed throughout the software life cycle. An elevation of privilege vulnerability exists in Microsoft Visual Studio Code, which can be exploit...
Security Update for Microsoft Visual Studio Code (March 2022)
The version of Microsoft Visual Studio Code installed on the remote host is prior to 1.65.1. It is, therefore, affected by a spoofing vulnerability. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 70300 ...
Security Update for Microsoft Visual Studio Code (February 2022)
The version of Microsoft Visual Studio Code installed on the remote host is prior to 1.64.1. It is, therefore, affected by a remote code execution vulnerability in the bundled Remote Development extension. Note that Nessus has not tested for these issues but has instead relied only on the...
Security Update for Microsoft Visual Studio Code Remote WSL Extension (December 2021)
The Microsoft Visual Studio Code Remote Windows Subsystem for Linux WSL extension is prior to version 0.63.11. It is, therefore, affected by a remote code execution vulnerability. An unauthenticated, remote attacker can exploit this to execute arbitrary code on the system with privileges of the...
Security Update for Microsoft Visual Studio Code (December 2021)
The version of Microsoft Visual Studio Code installed on the remote host is prior to 1.63.1. It is, therefore, affected by multiple vulnerabilities: - Visual Studio Code Remote Code Execution Vulnerability CVE-2021-43891 - Visual Studio Code Spoofing Vulnerability CVE-2021-43908 Note that Nessus...
Microsoft Visual Studio Code 代码注入漏洞
Microsoft Visual Studio Code is an open source code editor from Microsoft Corporation USA. A code injection vulnerability exists in Microsoft Visual Studio Code. No information about this vulnerability is available at this time, please stay tuned to CNNVD or vendor announcements...