CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1373 matches found

Cvelist•added 2023/11/14 5:57 p.m.•37 views

CVE-2023-36018 Visual Studio Code Jupyter Extension Spoofing Vulnerability

...

7.8CVSS9.7AI score0.01509EPSS

Exploits0References1

Microsoft CVE•added 2023/11/14 8:0 a.m.•29 views

Visual Studio Code Jupyter Extension Spoofing Vulnerability

...

9.8CVSS7.3AI score0.01509EPSS

Exploits0

NCSC•added 2023/11/14 12:0 a.m.•7 views

Vulnerabilities fixed in Microsoft Developer Tools

Microsoft has fixed vulnerabilities in several Developer Tools. A malicious party could exploit the vulnerabilities to cause a denial-of-service, bypass a security measure, bypass, grant himself elevated privileges or impersonate impersonate another user. Successful exploitation requires the...

9.8CVSS7.6AI score0.12512EPSS

Exploits0

CNNVD•added 2023/11/14 12:0 a.m.•3 views

Microsoft Visual Studio Code Security Vulnerability

Microsoft Visual Studio Code is an open source code editor from Microsoft USA. A security vulnerability exists in Microsoft Visual Studio Code. An attacker exploits the vulnerability to perform spoofing attacks...

9.8CVSS7AI score0.01509EPSS

Exploits0References2

Tenable Nessus•added 2023/11/14 12:0 a.m.•91 views

Security Update for Microsoft Visual Studio Code (November 2023)

A Jupyter extension spoofing vulnerability exists in Visual Studio Code when the installed Jupyter extension is prior to 2023.10.1100000000. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 Tenable,...

9.8CVSS8.2AI score0.01509EPSS

Exploits0References4

BDU FSTEC•added 2023/09/14 12:0 a.m.•5 views

The vulnerability of Visual Studio Code’s source editor, related to insufficient validation of input data, allows attackers to execute arbitrary code.

The vulnerability of Visual Studio Code’s source editor is related to insufficient validation of input data. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...

7.8CVSS8.1AI score0.01206EPSS

Exploits0References4Affected Software2

Tenable Nessus•added 2023/09/13 12:0 a.m.•54 views

Security Update for Microsoft Visual Studio Code (September 2023)

The version of Microsoft Visual Studio Code installed on the remote host is prior to 1.82.1. It is, therefore, affected by multiple remote code execution vulnerabilities. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. Note that Nessus has not...

7.8CVSS8.5AI score0.01206EPSS

Exploits0References5

NVD•added 2023/09/12 5:15 p.m.•24 views

CVE-2023-36742

Visual Studio Code Remote Code Execution Vulnerability...

7.8CVSS7.8AI score0.01206EPSS

Exploits0References1

OSV•added 2023/09/12 5:15 p.m.•21 views

CVE-2023-36742

Visual Studio Code Remote Code Execution Vulnerability...

7.8CVSS7.8AI score0.01206EPSS

Exploits0References1

Prion•added 2023/09/12 5:15 p.m.•28 views

Remote code execution

Visual Studio Code Remote Code Execution Vulnerability...

4.4CVSS7.9AI score0.01206EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/09/12 4:58 p.m.•24 views

CVE-2023-36742 Visual Studio Code Remote Code Execution Vulnerability

...

7.8CVSS6.9AI score0.01206EPSS

Exploits0References1

Cvelist•added 2023/09/12 4:58 p.m.•33 views

CVE-2023-36742 Visual Studio Code Remote Code Execution Vulnerability

...

7.8CVSS8AI score0.01206EPSS

Exploits0References1

CVE•added 2023/09/12 4:58 p.m.•561 views

CVE-2023-36742

Microsoft Visual Studio Code is affected by CVE-2023-36742 through vulnerable pre-1.82.1 builds. Connected documents describe a remote code execution scenario in VS Code where a user must open a malicious project; a crafted dependencies entry in package.json causes npm to execute scripts locally,...

7.8CVSS7.9AI score0.01206EPSS

Exploits0References1Affected Software1

Kaspersky•added 2023/09/12 12:0 a.m.•178 views

KLA60561 Multiple vulnerabilities in Microsoft Developer Tools

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, cause denial of service. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Visual Studio can be...

9.8CVSS9AI score0.04661EPSS

Exploits0References34

NCSC•added 2023/09/12 12:0 a.m.•34 views

Vulnerabilities fixed in Microsoft Developer Tools

Microsoft has fixed vulnerabilities in several Developer Tools. A malicious party could exploit the vulnerabilities to cause a denial-of-service, grant himself elevated privileges granted privileges or execute arbitrary code with privileges from the developer. Successful exploitation requires the...

9.8CVSS7.8AI score0.04661EPSS

Exploits0

Positive Technologies•added 2023/09/12 12:0 a.m.•3 views

PT-2023-5065 · Microsoft +1 · Visual Studio Code +1

Name of the Vulnerable Software and Affected Versions: Visual Studio Code affected versions not specified Description: The issue is related to insufficient input validation in Visual Studio Code, allowing an attacker to execute arbitrary code using a specially crafted file. Recommendations: At th...

7.8CVSS7.2AI score0.01266EPSS

Exploits0References9

CNNVD•added 2023/09/12 12:0 a.m.•5 views

Microsoft Visual Studio Code 安全漏洞

Microsoft Visual Studio Code is an open source code editor from Microsoft USA. A remote code execution vulnerability exists in Microsoft Visual Studio Code, which can be exploited by an attacker to execute arbitrary code on a system...

7.8CVSS8.5AI score0.01206EPSS

Exploits0References4

FreeBSD•added 2023/09/12 12:0 a.m.•32 views

vscode -- VS Code Remote Code Execution Vulnerability

VSCode developers report: Visual Studio Code Remote Code Execution Vulnerability A remote code execution vulnerability exists in VS Code 1.82.0 and earlier versions that working in a maliciously crafted package.json can result in executing commands locally. This scenario would require the attacke...

7.8CVSS7.7AI score0.01206EPSS

Exploits0References2

Tenable Nessus•added 2023/08/30 12:0 a.m.•26 views

Security Update for Microsoft Visual Studio Code Bosh Editor Extension (CVE-2022-31691)

The Microsoft Visual Studio Code Bosh Editor Extension is version 1.39.0 or below. It is, therefore, affected by a remote code execution vulnerability. The extension uses the Snakeyaml library for YAML editing support. This library allows for some special syntax in the YAML that under certain...

9.8CVSS8.9AI score0.02391EPSS

Exploits0References2

Tenable Nessus•added 2023/08/30 12:0 a.m.•23 views

Security Update for Microsoft Visual Studio Code Concourse CI Pipeline Editor Extension (CVE-2022-31691)

The Microsoft Visual Studio Code Concourse CI Pipeline Editor Extension is version 1.39.0 or below. It is, therefore, affected by a remote code execution vulnerability. The extension uses the Snakeyaml library for YAML editing support. This library allows for some special syntax in the YAML that...

9.8CVSS9.2AI score0.02391EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by