Visual Studio Code@- Security Vulnerabilities and Issues — Visual Studio Code@- CVE List

Lucene search

MicrosoftVisual Studio Code-

15 matches found

CVE•added 2022/04/15 7:15 p.m.•241 views

CVE-2022-26921

Visual Studio Code Elevation of Privilege Vulnerability

7.8CVSS7.4AI score0.00649EPSS

CVE•added 2022/02/09 5:15 p.m.•216 views

CVE-2022-21991

Visual Studio Code Remote Development Extension Remote Code Execution Vulnerability

8.1CVSS8.3AI score0.03343EPSS

CVE•added 2020/10/16 11:15 p.m.•148 views

CVE-2020-16977

A remote code execution vulnerability exists in Visual Studio Code when the Python extension loads a Jupyter notebook file. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user...

9.3CVSS7.2AI score0.04865EPSS

CVE•added 2021/02/25 11:15 p.m.•136 views

CVE-2021-1639

Visual Studio Code Remote Code Execution Vulnerability

7.8CVSS7AI score0.01254EPSS

CVE•added 2022/09/13 7:15 p.m.•126 views

CVE-2022-38020

Visual Studio Code Elevation of Privilege Vulnerability

7.3CVSS7.4AI score0.00608EPSS

CVE•added 2020/10/16 11:15 p.m.•97 views

CVE-2020-17023

A remote code execution vulnerability exists in Visual Studio Code when a user is tricked into opening a malicious 'package.json' file. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with adminis...

9.3CVSS7.8AI score0.15298EPSS

CVE•added 2022/10/11 7:15 p.m.•96 views

CVE-2022-41042

Visual Studio Code Information Disclosure Vulnerability

7.4CVSS7.4AI score0.00589EPSS

CVE•added 2024/10/08 6:15 p.m.•86 views

CVE-2024-43488

Missing authentication for critical function in Visual Studio Code extension for Arduino allows an unauthenticated attacker to perform remote code execution through network attack vector.

9.8CVSS9.8AI score0.03391EPSS

CVE•added 2021/09/15 12:15 p.m.•85 views

CVE-2021-26437

Visual Studio Code Spoofing Vulnerability

5.5CVSS5.8AI score0.01512EPSS

CVE•added 2021/03/11 4:15 p.m.•83 views

CVE-2021-27060

Visual Studio Code Remote Code Execution Vulnerability

7.8CVSS7.8AI score0.00693EPSS

CVE•added 2020/11/11 7:15 a.m.•80 views

CVE-2020-17104

Visual Studio Code JSHint Extension Remote Code Execution Vulnerability

9.3CVSS7.9AI score0.04588EPSS

CVE•added 2019/03/06 12:0 a.m.•71 views

CVE-2019-0728

A remote code execution vulnerability exists in Visual Studio Code when it process environment variables after opening a project, aka 'Visual Studio Code Remote Code Execution Vulnerability'.

9.3CVSS8.1AI score0.11573EPSS

CVE•added 2021/12/15 3:15 p.m.•71 views

CVE-2021-43908

Visual Studio Code Spoofing Vulnerability

4.3CVSS5AI score0.09451EPSS

CVE•added 2021/03/11 4:15 p.m.•64 views

CVE-2021-27084

Visual Studio Code Java Extension Pack Remote Code Execution Vulnerability

9.3CVSS7.8AI score0.0641EPSS

CVE•added 2018/06/26 2:29 p.m.•46 views

CVE-2018-0597

Untrusted search path vulnerability in the installer of Visual Studio Code allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.

7.8CVSS7.7AI score0.02342EPSS