Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Untrusted search path vulnerability in the installer of Visual Studio Code allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Visual Studio Code installer 安全漏洞
Vulnerability Description
Microsoft Visual Studio Code是美国微软(Microsoft)公司的一款支持OS X、Windows和Linux平台的用于编写现代Web应用程序和云应用的跨平台源代码编辑器。installer是Visual Studio Code的安装程序。 Microsoft Visual Studio Code中的installer存在不可信的搜索路径漏洞。攻击者可借助目录下恶意的DLL利用该漏洞以调用安装程序用户的权限执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A