cbcvebase.
CVE-2024-43488
published 2024-10-08

CVE-2024-43488: Missing authentication for critical function in Visual Studio Code extension for Arduino allows an unauthenticated attacker to perform remote code execution…

critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
Missing authentication for critical function in Visual Studio Code extension for Arduino allows an unauthenticated attacker to perform remote code execution through network attack vector.

Affected

2 ranges
VendorProductVersion rangeFixed in
microsoftvisual_studio_code
msrcvisual_studio_code