EUVD-2024-43917

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2018-6169

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Lack of timeout on extension install prompt in Extensions in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to trigger installation of an unwante...

The vulnerability of the Visual Studio Code Remote – SSH extension of the code editor Visual Studio Code, related to access control deficiencies, allows attackers to escalate their privileges.

The vulnerability of the Visual Studio Code Remote – SSH extension of the code editor Visual Studio Code is related to deficiencies in access control. Exploiting this vulnerability could allow attackers to enhance their privileges...

CVE-2024-49049

Visual Studio Code Remote Extension Elevation of Privilege Vulnerability...

CVE-2024-49049

Visual Studio Code Remote Extension Elevation of Privilege Vulnerability...

CVE-2024-49049 Visual Studio Code Remote Extension Elevation of Privilege Vulnerability

...

CVE-2024-49049

CVE-2024-49049 affects the Visual Studio Code Remote SSH Extension. According to connected sources, the extension is vulnerable prior to version 0.115.1 to an elevation-of-privilege flaw (attack vector: LOCAL, privileges: LOW, no user interaction; CVSS 3.1 base 7.1). Nessus notes the issue as und...

CVE-2024-49049 Visual Studio Code Remote Extension Elevation of Privilege Vulnerability

...

Visual Studio Code Remote Extension Elevation of Privilege Vulnerability

...

PT-2024-8100 · Microsoft · Visual Studio Code Remote Extension

Name of the Vulnerable Software and Affected Versions: Visual Studio Code Remote Extension affected versions not specified Description: The issue is related to insufficient access control in the Visual Studio Code Remote Extension. Exploitation of this issue may allow an attacker to elevate their...

KLA77107 Multiple vulnerabilities in Microsoft Developer Tools

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, gain privileges. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in .NET and Visual Studio...

The vulnerability of the Systems Extensions component in the Google Chrome browser for ChromeOS operating systems allows a hacker to install any desired extension.

The vulnerability of the Systems Extensions component in the Google Chrome browser for ChromeOS operating systems is related to lack of access control. Exploiting this vulnerability allows a malicious actor to install arbitrary extensions remotely...

The vulnerabilities of Mozilla Firefox, Mozilla Firefox ESR, and the email client Thunderbird are related to authentication process errors, which allow a perpetrator to disable the installed extensions.

The vulnerabilities of Mozilla Firefox, Mozilla Firefox ESR, and the email client Thunderbird are related to errors in the certificate validation process. Exploiting these vulnerabilities can allow an attacker to disable the installed extensions remotely...

git: arbitrary code execution via crafted URLs

A flaw was found in the way the git-remote-ext helper processed certain URLs. If a user had Git configured to automatically clone submodules from untrusted repositories, an attacker could inject commands into the URL of a submodule, allowing them to execute arbitrary code on the user's system...

git: arbitrary code execution via crafted URLs

A flaw was found in the way the git-remote-ext helper processed certain URLs. If a user had Git configured to automatically clone submodules from untrusted repositories, an attacker could inject commands into the URL of a submodule, allowing them to execute arbitrary code on the user's system...