Skip to main content

Visual Studio Live Share

2 CVEs product

Monthly

CVE-2020-1343 MEDIUM PATCH This Month

An information disclosure vulnerability exists in Visual Studio Code Live Share Extension when it exposes tokens in plain text, aka 'Visual Studio Code Live Share Information Disclosure. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required.

Information Disclosure Visual Studio Live Share
NVD
CVSS 3.1
5.9
EPSS
2.8%
CVE-2019-1486 MEDIUM PATCH This Month

A spoofing vulnerability exists in Visual Studio Live Share when a guest connected to a Live Share session is redirected to an arbitrary URL specified by the session host, aka 'Visual Studio Live. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Open Redirect vulnerability could allow attackers to redirect users to malicious websites via URL manipulation.

Open Redirect Visual Studio 2019 Visual Studio Live Share
NVD
CVSS 3.1
6.1
EPSS
1.5%
EPSS 3% CVSS 5.9
MEDIUM PATCH This Month

An information disclosure vulnerability exists in Visual Studio Code Live Share Extension when it exposes tokens in plain text, aka 'Visual Studio Code Live Share Information Disclosure. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required.

Information Disclosure Visual Studio Live Share
NVD
EPSS 1% CVSS 6.1
MEDIUM PATCH This Month

A spoofing vulnerability exists in Visual Studio Live Share when a guest connected to a Live Share session is redirected to an arbitrary URL specified by the session host, aka 'Visual Studio Live. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Open Redirect vulnerability could allow attackers to redirect users to malicious websites via URL manipulation.

Open Redirect Visual Studio 2019 Visual Studio Live Share
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy