Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1373 matches found

OSV
OSVadded 2021/03/21 5:15 a.m.13 views

CVE-2021-28953

The unofficial C/C++ Advanced Lint extension before 1.9.0 for Visual Studio Code allows attackers to execute arbitrary binaries if the user opens a crafted repository...

7.8CVSS7.6AI score
Exploits0References3
Prion
Prionadded 2021/03/21 5:15 a.m.10 views

Design/Logic Flaw

The unofficial C/C++ Advanced Lint extension before 1.9.0 for Visual Studio Code allows attackers to execute arbitrary binaries if the user opens a crafted repository...

6.8CVSS7.9AI score0.01006EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2021/03/21 4:16 a.m.10 views

CVE-2021-28953

The unofficial C/C++ Advanced Lint extension before 1.9.0 for Visual Studio Code allows attackers to execute arbitrary binaries if the user opens a crafted repository...

8.1AI score0.01006EPSS
Exploits0References3
CVE
CVEadded 2021/03/21 4:16 a.m.100 views

CVE-2021-28953

CVE-2021-28953 affects the unofficial C/C++ Advanced Lint extension for Visual Studio Code (pre-1.9.0). The vulnerability allows an attacker to cause the extension to execute arbitrary binaries when a user opens a crafted repository. The issue, present in multiple feeds, is documented with a CVSS...

7.8CVSS7.8AI score0.01006EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologiesadded 2021/03/21 12:0 a.m.2 views

PT-2021-17996 · Microsoft · Visual Studio Code

Name of the Vulnerable Software and Affected Versions: C/C++ Advanced Lint extension versions prior to 1.9.0 for Visual Studio Code Description: The issue allows attackers to execute arbitrary binaries if the user opens a crafted repository. There is no information provided about the estimated...

7.8CVSS7.8AI score0.01006EPSS
Exploits0References9
CNNVD
CNNVDadded 2021/03/21 12:0 a.m.3 views

Joseph Benden C/C++ Advanced Lint 代码问题漏洞

Microsoft Visual Studio Code is an open source code editor from Microsoft USA. A code injection vulnerability in Microsoft Visual Studio Code unofficial C/C++ Advanced Lint extension prior to version 1.9.0 can be exploited by an attacker to execute arbitrary binaries when a user opens a carefully...

7.8CVSS6.2AI score0.01006EPSS
Exploits0References4
NVD
NVDadded 2021/03/18 4:15 p.m.7 views

CVE-2021-28794

The unofficial ShellCheck extension before 0.13.4 for Visual Studio Code mishandles shellcheck.executablePath...

9.8CVSS0.02109EPSS
Exploits0References3
OSV
OSVadded 2021/03/18 4:15 p.m.14 views

CVE-2021-28794

The unofficial ShellCheck extension before 0.13.4 for Visual Studio Code mishandles shellcheck.executablePath...

9.8CVSS7.1AI score
Exploits0References3
NVD
NVDadded 2021/03/18 4:15 p.m.11 views

CVE-2021-28790

The unofficial SwiftLint extension before 1.4.5 for Visual Studio Code allows remote attackers to execute arbitrary code by constructing a malicious workspace with a crafted swiftlint.path configuration value that triggers execution upon opening the workspace...

7.8CVSS0.01678EPSS
Exploits0References2
NVD
NVDadded 2021/03/18 4:15 p.m.14 views

CVE-2021-28792

The unofficial Swift Development Environment extension before 2.12.1 for Visual Studio Code allows remote attackers to execute arbitrary code by constructing a malicious workspace with a crafted sourcekit-lsp.serverPath, swift.languageServerPath, swift.path.sourcekite,...

7.8CVSS0.01678EPSS
Exploits0References2
NVD
NVDadded 2021/03/18 4:15 p.m.11 views

CVE-2021-28791

The unofficial SwiftFormat extension before 1.3.7 for Visual Studio Code allows remote attackers to execute arbitrary code by constructing a malicious workspace with a crafted swiftformat.path configuration value that triggers execution upon opening the workspace...

7.8CVSS0.01624EPSS
Exploits0References2
OSV
OSVadded 2021/03/18 4:15 p.m.16 views

CVE-2021-28789

The unofficial apple/swift-format extension before 1.1.2 for Visual Studio Code allows remote attackers to execute arbitrary code by constructing a malicious workspace with a crafted apple-swift-format.path configuration value that triggers execution upon opening the workspace...

7.8CVSS8.1AI score
Exploits0References2
OSV
OSVadded 2021/03/18 4:15 p.m.12 views

CVE-2021-28790

The unofficial SwiftLint extension before 1.4.5 for Visual Studio Code allows remote attackers to execute arbitrary code by constructing a malicious workspace with a crafted swiftlint.path configuration value that triggers execution upon opening the workspace...

7.8CVSS8.1AI score
Exploits0References2
OSV
OSVadded 2021/03/18 4:15 p.m.13 views

CVE-2021-28791

The unofficial SwiftFormat extension before 1.3.7 for Visual Studio Code allows remote attackers to execute arbitrary code by constructing a malicious workspace with a crafted swiftformat.path configuration value that triggers execution upon opening the workspace...

7.8CVSS8.1AI score
Exploits0References2
OSV
OSVadded 2021/03/18 4:15 p.m.15 views

CVE-2021-28792

The unofficial Swift Development Environment extension before 2.12.1 for Visual Studio Code allows remote attackers to execute arbitrary code by constructing a malicious workspace with a crafted sourcekit-lsp.serverPath, swift.languageServerPath, swift.path.sourcekite,...

7.8CVSS8.1AI score
Exploits0References2
Prion
Prionadded 2021/03/18 4:15 p.m.10 views

Design/Logic Flaw

The unofficial apple/swift-format extension before 1.1.2 for Visual Studio Code allows remote attackers to execute arbitrary code by constructing a malicious workspace with a crafted apple-swift-format.path configuration value that triggers execution upon opening the workspace...

6.8CVSS8.1AI score0.01714EPSS
Exploits0References2Affected Software1
Prion
Prionadded 2021/03/18 4:15 p.m.16 views

Design/Logic Flaw

The unofficial SwiftLint extension before 1.4.5 for Visual Studio Code allows remote attackers to execute arbitrary code by constructing a malicious workspace with a crafted swiftlint.path configuration value that triggers execution upon opening the workspace...

6.8CVSS8.1AI score0.01678EPSS
Exploits0References2Affected Software1
Prion
Prionadded 2021/03/18 4:15 p.m.11 views

Deserialization of untrusted data

The unofficial SwiftFormat extension before 1.3.7 for Visual Studio Code allows remote attackers to execute arbitrary code by constructing a malicious workspace with a crafted swiftformat.path configuration value that triggers execution upon opening the workspace...

6.8CVSS8.1AI score0.01624EPSS
Exploits0References2Affected Software1
Prion
Prionadded 2021/03/18 4:15 p.m.13 views

Deserialization of untrusted data

The unofficial ShellCheck extension before 0.13.4 for Visual Studio Code mishandles shellcheck.executablePath...

7.5CVSS9.5AI score0.02109EPSS
Exploits0References3Affected Software1
Prion
Prionadded 2021/03/18 4:15 p.m.10 views

Design/Logic Flaw

The unofficial Swift Development Environment extension before 2.12.1 for Visual Studio Code allows remote attackers to execute arbitrary code by constructing a malicious workspace with a crafted sourcekit-lsp.serverPath, swift.languageServerPath, swift.path.sourcekite,...

6.8CVSS8.1AI score0.01678EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder