CVE-2021-43907: Visual Studio Code WSL Extension Remote Code Execution Vulnerability
Overview
- Severity
- Critical (CVSS 9.8)
- CVSS Vector
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
- Category
- Remote Code Execution
- Exploit Status
- Not Exploited
- Exploitation Likelihood
- Less Likely
- Patch Tuesday
- 2021-Dec
- Released
- 2021-12-14
- EPSS Score
- 10.13% (percentile: 93.1%)
Affected Products (1)
Developer Tools
- Visual Studio Code WSL Extension
Security Updates (1)
Acknowledgments
<a href="https://parsiya.net/">Parsia Hakimian</a>
Revision History
- 2021-12-14: Information published.