Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Visual_studio_code
(Microsoft)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 48 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-04-11 | CVE-2023-24893 | Visual Studio Code Remote Code Execution Vulnerability | Visual_studio_code | N/A | ||
| 2023-05-09 | CVE-2023-29338 | Visual Studio Code Spoofing Vulnerability | Visual_studio_code | N/A | ||
| 2023-06-14 | CVE-2023-33144 | Visual Studio Code Spoofing Vulnerability | Visual_studio_code | N/A | ||
| 2023-09-12 | CVE-2023-36742 | Visual Studio Code Remote Code Execution Vulnerability | Visual_studio_code | N/A | ||
| 2024-10-08 | CVE-2024-43601 | Visual Studio Code for Linux Remote Code Execution Vulnerability | Visual_studio_code | 7.8 | ||
| 2024-10-08 | CVE-2024-43488 | Missing authentication for critical function in Visual Studio Code extension for Arduino allows an unauthenticated attacker to perform remote code execution through network attack vector. | Visual_studio_code | 9.8 | ||
| 2020-08-17 | CVE-2020-0604 | A remote code execution vulnerability exists in Visual Studio Code when it process environment variables after opening a project. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. To exploit... | Visual_studio_code | 7.8 | ||
| 2019-03-05 | CVE-2019-0728 | A remote code execution vulnerability exists in Visual Studio Code when it process environment variables after opening a project, aka 'Visual Studio Code Remote Code Execution Vulnerability'. | Visual_studio_code | 7.8 | ||
| 2020-01-24 | CVE-2019-1414 | An elevation of privilege vulnerability exists in Visual Studio Code when it exposes a debug listener to users of a local computer, aka 'Visual Studio Code Elevation of Privilege Vulnerability'. | Visual_studio_code | N/A | ||
| 2018-06-26 | CVE-2018-0597 | Untrusted search path vulnerability in the installer of Visual Studio Code allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. | Visual_studio_code | 7.8 |