CVE-2020-1171

Sažetak

A remote code execution vulnerability exists in Visual Studio Code when the Python extension loads configuration files after opening a project, aka 'Visual Studio Code Python Extension Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1192.

Reference

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1171
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1171

CVSS

Base:	9.3
Impact:	10.0
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

08-07-2025 - 20:03

Objavljeno

21-05-2020 - 23:15