CVE-2021-28477
published 2021-04-13CVE-2021-28477: Visual Studio Code Remote Code Execution Vulnerability
high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
Visual Studio Code Remote Code Execution Vulnerability
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| immer_project | immer | >= 7.0.0 < 9.0.6 | 9.0.6 |
| microsoft | visual_studio_code | < 1.55.2 | 1.55.2 |
| microsoft | visual_studio_code | >= 1.0.0 < publication | publication |
| msrc | visual_studio_code | — | — |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
ghsa7.5HIGH