CVE-2021-28472
published 2021-04-13CVE-2021-28472: Visual Studio Code Maven for Java Extension Remote Code Execution Vulnerability
PriorityP357high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
EPSS
63.03%
99.1th percentile
Visual Studio Code Maven for Java Extension Remote Code Execution Vulnerability
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | visual_studio_code_maven_for_java_extension | < publication | publication |
| microsoft | vscode-maven | < 0.29.0 | 0.29.0 |
| msrc | visual_studio_code_maven_for_java_extension | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- ·No technical exploitation details, PoC, or indicators of compromise are publicly available for this CVE. Microsoft has confirmed it has NOT been publicly disclosed or exploited in the wild, and exploitation is rated 'Less Likely' for all software releases. ↗
- ·The affected component is the Visual Studio Code Maven for Java Extension. Remediation is via the extension's release notes/update on the VS Code Marketplace. ↗
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
vendor_msrc7.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-587x-4hxw-rc2g: Visual Studio Code Maven for Java Extension Remote Code Execution Vulnerability
ghsa_unreviewed·2022-05-24
CVE-2021-28472 [HIGH] GHSA-587x-4hxw-rc2g: Visual Studio Code Maven for Java Extension Remote Code Execution Vulnerability
Visual Studio Code Maven for Java Extension Remote Code Execution Vulnerability
Microsoft
Visual Studio Code Maven for Java Extension Remote Code Execution Vulnerability
vendor_msrc·2021-04-13·CVSS 7.8
CVE-2021-28472 [HIGH] Visual Studio Code Maven for Java Extension Remote Code Execution Vulnerability
Visual Studio Code Maven for Java Extension Remote Code Execution Vulnerability
Visual Studio Code - Maven for Java Extension: Visual Studio Code - Maven for Java Extension
Microsoft: Microsoft
Impact: Remote Code Execution
Exploit Status: Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely;DOS:N/A
Remediation: Release Notes
Reference: https://marketplace.visualstudio.com/items?itemName=vscjava.vscode-maven
No detection rules found.
No public exploits indexed.
Crowdstrike
2021 April Patch Tuesday: Updates and Analysis
blogs_crowdstrike·CVSS 7.5
CVE-2026-20929 [HIGH] 2021 April Patch Tuesday: Updates and Analysis
STARDUST CHOLLIMA Likely Compromises Axios npm Package Apr 01, 2026
Falcon for IT Supports Windows Secure Boot Certificate Lifecycle Management Apr 01, 2026
Detecting CVE-2026-20929: Kerberos Authentication Relay via CNAME Abuse Mar 31, 2026
How Charlotte AI AgentWorks Fuels Security's Agentic Ecosystem Mar 25, 2026
STARDUST CHOLLIMA Likely Compromises Axios npm Package Apr 01, 2026
Falcon for IT Supports Windows Secure Boot Certificate Lifecycle Management Apr 01, 2026
Detecting CVE-2026-20929: Kerberos Authentication Relay via CNAME Abuse Mar 31, 2026
How Charlotte AI AgentWorks Fuels Security's Agentic Ecosystem Mar 25, 2026
Video Highlights the 4 Key Steps to Successful Incident Response Dec 02, 2019
Helping Non-Security Stakeholders Understand ATT&CK in 10 Minutes or Less [VI
Crowdstrike
2021 April Patch Tuesday: Updates and Analysis
blogs_crowdstrike·CVSS 7.5
CVE-2026-20929 [HIGH] 2021 April Patch Tuesday: Updates and Analysis
How CrowdStrike is Accelerating Exposure Evaluation as Adversaries Gain Speed Apr 06, 2026
STARDUST CHOLLIMA Likely Compromises Axios npm Package Apr 01, 2026
Falcon for IT Supports Windows Secure Boot Certificate Lifecycle Management Apr 01, 2026
Detecting CVE-2026-20929: Kerberos Authentication Relay via CNAME Abuse Mar 31, 2026
How CrowdStrike is Accelerating Exposure Evaluation as Adversaries Gain Speed Apr 06, 2026
STARDUST CHOLLIMA Likely Compromises Axios npm Package Apr 01, 2026
Falcon for IT Supports Windows Secure Boot Certificate Lifecycle Management Apr 01, 2026
Detecting CVE-2026-20929: Kerberos Authentication Relay via CNAME Abuse Mar 31, 2026
Video Highlights the 4 Key Steps to Successful Incident Response Dec 02, 2019
Helping Non-Security Stakeholders Understand AT
2021-04-13
Published