CVE-2021-28457 - log back

CVE-2021-28457 edited at 11 May 2021 22:16:43
Description
- An arbitrary code execution vulnerability has been found in Visual Studio Code version 1.55.2. This CVE ID is unique from CVE-2021-28469, CVE-2021-28473, CVE-2021-28475, CVE-2021-28477.
+ An arbitrary code execution vulnerability has been found in Visual Studio Code before version 1.56.0.
CVE-2021-28457 edited at 13 Apr 2021 22:17:02
Severity
- Medium
+ High
Remote
- Remote
+ Local
Description
- A remote code execution vulnerability has been found in Visual Studio Code version 1.55.2. This CVE ID is unique from CVE-2021-28469, CVE-2021-28473, CVE-2021-28475, CVE-2021-28477.
+ An arbitrary code execution vulnerability has been found in Visual Studio Code version 1.55.2. This CVE ID is unique from CVE-2021-28469, CVE-2021-28473, CVE-2021-28475, CVE-2021-28477.
CVE-2021-28457 edited at 13 Apr 2021 22:14:14
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Remote
Type
- Unknown
+ Arbitrary code execution
Description
+ A remote code execution vulnerability has been found in Visual Studio Code version 1.55.2. This CVE ID is unique from CVE-2021-28469, CVE-2021-28473, CVE-2021-28475, CVE-2021-28477.
References
+ https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28457
+ https://github.com/microsoft/vscode/issues/121209
+ https://github.com/microsoft/vscode/commit/f0a344a76e237f185a3e94e9f1bb015ce1fa7a3c
Notes
CVE-2021-28457 created at 13 Apr 2021 22:08:18