CVE-2019-0728

Sažetak

A remote code execution vulnerability exists in Visual Studio Code when it process environment variables after opening a project, aka 'Visual Studio Code Remote Code Execution Vulnerability'.

Reference

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0728
http://www.securityfocus.com/bid/106913
http://www.openwall.com/lists/oss-security/2019/04/30/4
http://seclists.org/fulldisclosure/2019/Apr/38

CVSS

Base:	9.3
Impact:	10.0
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

21-07-2021 - 11:39

Objavljeno

05-03-2019 - 23:29