CVE-2020-1481

Description

A remote code execution vulnerability exists in the ESLint extension for Visual Studio Code when it validates source code after opening a project, aka 'Visual Studio Code ESLint Extention Remote Code Execution Vulnerability'.

References

https://www.tenable.com/blog/microsoft-s-july-2020-patch-tuesday-addresses-123-cves-including-wormable-windows-dns-server

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1481

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3