12 matches found
EUVD-2024-43917
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2018-6169
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Lack of timeout on extension install prompt in Extensions in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to trigger installation of an unwante...
CVE-2024-49049
Visual Studio Code Remote Extension Elevation of Privilege Vulnerability...
CVE-2024-49049
Visual Studio Code Remote Extension Elevation of Privilege Vulnerability...
CVE-2024-49049
CVE-2024-49049 affects the Visual Studio Code Remote SSH Extension. According to connected sources, the extension is vulnerable prior to version 0.115.1 to an elevation-of-privilege flaw (attack vector: LOCAL, privileges: LOW, no user interaction; CVSS 3.1 base 7.1). Nessus notes the issue as und...
CVE-2024-49049 Visual Studio Code Remote Extension Elevation of Privilege Vulnerability
...
CVE-2024-49049 Visual Studio Code Remote Extension Elevation of Privilege Vulnerability
...
Visual Studio Code Remote Extension Elevation of Privilege Vulnerability
...
KLA77107 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, gain privileges. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in .NET and Visual Studio...
PT-2024-8100 · Microsoft · Visual Studio Code Remote Extension
Name of the Vulnerable Software and Affected Versions: Visual Studio Code Remote Extension affected versions not specified Description: The issue is related to insufficient access control in the Visual Studio Code Remote Extension. Exploitation of this issue may allow an attacker to elevate their...
git: arbitrary code execution via crafted URLs
A flaw was found in the way the git-remote-ext helper processed certain URLs. If a user had Git configured to automatically clone submodules from untrusted repositories, an attacker could inject commands into the URL of a submodule, allowing them to execute arbitrary code on the user's system...
git: arbitrary code execution via crafted URLs
A flaw was found in the way the git-remote-ext helper processed certain URLs. If a user had Git configured to automatically clone submodules from untrusted repositories, an attacker could inject commands into the URL of a submodule, allowing them to execute arbitrary code on the user's system...