CVE-2021-31214 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Medium
Remote	No
Type	Arbitrary code execution
Description	An arbitrary code execution vulnerability in the Grunt, Gulp and Jake task auto detection has been found in Visual Studio Code before version 1.57.0.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-1963	code	1.56.2-3	1.58.0-1	Medium	Fixed

Date	Advisory	Group	Package	Severity	Type
20 Jul 2021	ASA-202107-34	AVG-1963	code	Medium	arbitrary code execution

References
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31214 https://github.com/microsoft/vscode/issues/123588 https://github.com/microsoft/vscode/commit/5f3466a21e80b2c016a1c0cbe2af683c9072d0a7

References

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31214
https://github.com/microsoft/vscode/issues/123588
https://github.com/microsoft/vscode/commit/5f3466a21e80b2c016a1c0cbe2af683c9072d0a7