CVE-2020-1192
Description
A remote code execution vulnerability exists in Visual Studio Code when the Python extension loads workspace settings from a notebook file, aka Visual Studio Code Python Extension Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2020-1171.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
41.223
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2020-1171,CVE-2020-1192 are affected in Microsoft Visual Studio Code (User Based) 2020.4.76186 | Windows |
| Vulnerabilities CVE-2020-1171,CVE-2020-1192 are affected in Microsoft Visual Studio Code (User Based) 2020.4.9 | Windows |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234