CVE-2025-55319
- EPSS 0.07%
- Published 12.09.2025 00:49:27
- Last modified 24.09.2025 13:18:25
Ai command injection in Agentic AI and Visual Studio Code allows an unauthorized attacker to execute code over a network.
CVE-2025-21264
- EPSS 0.14%
- Published 13.05.2025 16:58:52
- Last modified 19.05.2025 18:24:06
Files or directories accessible to external parties in Visual Studio Code allows an unauthorized attacker to bypass a security feature locally.
CVE-2025-32726
- EPSS 0.05%
- Published 12.04.2025 02:15:22
- Last modified 08.07.2025 17:12:50
Improper access control in Visual Studio Code allows an authorized attacker to elevate privileges locally.
CVE-2025-26631
- EPSS 0.24%
- Published 11.03.2025 16:59:23
- Last modified 03.07.2025 14:59:32
Uncontrolled search path element in Visual Studio Code allows an authorized attacker to elevate privileges locally.
CVE-2025-24042
- EPSS 0.1%
- Published 11.02.2025 18:15:41
- Last modified 02.07.2025 17:15:25
Visual Studio Code JS Debug Extension Elevation of Privilege Vulnerability
CVE-2025-24039
- EPSS 0.31%
- Published 11.02.2025 18:15:40
- Last modified 02.07.2025 17:13:40
Visual Studio Code Elevation of Privilege Vulnerability
CVE-2024-43601
- EPSS 0.64%
- Published 08.10.2024 18:15:27
- Last modified 08.11.2024 22:15:20
Visual Studio Code for Linux Remote Code Execution Vulnerability
CVE-2024-43488
- EPSS 3.27%
- Published 08.10.2024 18:15:11
- Last modified 21.10.2024 21:05:53
Missing authentication for critical function in Visual Studio Code extension for Arduino allows an unauthenticated attacker to perform remote code execution through network attack vector.
CVE-2024-26165
- EPSS 2.78%
- Published 12.03.2024 17:15:55
- Last modified 27.12.2024 17:52:57
Visual Studio Code Elevation of Privilege Vulnerability
CVE-2023-36742
- EPSS 0.24%
- Published 12.09.2023 17:15:10
- Last modified 21.11.2024 08:10:29
Visual Studio Code Remote Code Execution Vulnerability