Visual Studio Code Remote Extension Elevation of Privilege Vulnerability
CVE-2024-49049
7.1HIGH
Key Information
- Vendor
- Microsoft
- Status
- Visual Studio Code Remote - Ssh Extension
- Vendor
- CVE Published:
- 12 November 2024
Summary
Visual Studio Code Remote Extension Elevation of Privilege Vulnerability
Affected Version(s)
Visual Studio Code Remote - SSH Extension < 0.115.1
CVSS V3.1
Score:
7.1
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published.
Collectors
NVD DatabaseMitre DatabaseMicrosoft Feed