VDB
CVE-2020-1481
CVE-2020-1481
PUBLISHED
CVSS 9.300000190734863 CRITICAL
A remote code execution vulnerability exists in the ESLint extension for Visual Studio Code when it validates source code after opening a project, aka 'Visual Studio Code ESLint Extention Remote Code Execution Vulnerability'.
EPSS 40.49% · 97.4th percentile
Risk Scores
CVSS 2.0
9.300000190734863
EPSS Score
40.49%
97.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| microsoft | eslint | 0 |
| Microsoft | Microsoft Visual Studio Code ESLint extension | unspecified |
Exploit Intelligence
- POC For CVE-2020-1481 - Jira Username Enumerator/Validator (github-poc-repo)
- POC For CVE-2020-1481 - Jira Username Enumerator/Validator (github-poc-repo)
- POC For CVE-2020-1481 - Jira Username Enumerator/Validator (github-poc-repo)
- POC For CVE-2020-1481 - Jira Username Enumerator/Validator (github-poc-repo)
- POC For CVE-2020-1481 - Jira Username Enumerator/Validator (github-poc-repo)
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1481 (circl)
- cve_test.go (github-poc)
- cve_test.go (github-poc)
- cve_test.go (github-poc)
- cve_test.go (github-poc)
…and 4 more exploits
Timeline
- Jul 14, 2020 CVE Published
- Apr 14, 2021 EPSS Score
- Feb 4, 2022 EPSS Score
- Mar 30, 2023 EPSS Score
- Apr 25, 2023 EPSS Score
- Aug 17, 2023 EPSS Score
- Aug 31, 2023 EPSS Score
- Dec 2, 2023 EPSS Score
- Aug 4, 2024 CVE Updated
- Aug 23, 2024 EPSS Score
- Dec 17, 2024 EPSS Score
- Mar 17, 2025 EPSS Score