Search Results | AttackerKB

57 Total Results

Displaying 1-10 of 57

Attacker Value

Unknown

CVE-2022-30129

Disclosure Date: May 10, 2022 (last updated November 29, 2024)

Visual Studio Code Remote Code Execution Vulnerability

Attacker Value

Very High

CVE-2019-1414

Disclosure Date: January 24, 2020 (last updated November 27, 2024)

An elevation of privilege vulnerability exists in Visual Studio Code when it exposes a debug listener to users of a local computer, aka 'Visual Studio Code Elevation of Privilege Vulnerability'.

Attacker Value

Unknown

CVE-2025-24042

Disclosure Date: February 11, 2025 (last updated February 12, 2025)

Visual Studio Code JS Debug Extension Elevation of Privilege Vulnerability

Attack Vector: Local Privileges: Low User Interaction: Required

Attacker Value

Unknown

CVE-2025-24039

Disclosure Date: February 11, 2025 (last updated February 12, 2025)

Visual Studio Code Elevation of Privilege Vulnerability

Attack Vector: Local Privileges: Low User Interaction: Required

Attacker Value

Unknown

CVE-2024-43601

Disclosure Date: October 08, 2024 (last updated January 06, 2025)

Visual Studio Code for Linux Remote Code Execution Vulnerability

Attacker Value

Unknown

CVE-2024-43488

Disclosure Date: October 08, 2024 (last updated October 22, 2024)

Missing authentication for critical function in Visual Studio Code extension for Arduino allows an unauthenticated attacker to perform remote code execution through network attack vector.

Attack Vector: Network Privileges: None User Interaction: None

Attacker Value

Unknown

CVE-2024-9145

Disclosure Date: October 01, 2024 (last updated October 01, 2024)

Wiz Code Visual Studio Code extension in versions 1.0.0 up to 1.5.3 and Wiz (legacy) Visual Studio Code extension in versions 0.13.0 up to 0.17.8 are vulnerable to local command injection if the user opens a maliciously crafted Dockerfile located in a path that has been marked as a "trusted folder" within Visual Studio Code, and initiates a manual scan of the file.