Vulnerabilities > CVE-2021-29658 - Unspecified vulnerability in Vscode-Rufo Project Vscode-Rufo 0.0.1/0.0.2/0.0.3

047910
CVSS 8.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
vscode-rufo-project

Summary

The unofficial vscode-rufo extension before 0.0.4 for Visual Studio Code allows attackers to execute arbitrary binaries if the user opens a crafted workspace folder.