VDB

CVE-2020-1481

CVE-2020-1481 PUBLISHED CVSS 9.300000190734863 CRITICAL

A remote code execution vulnerability exists in the ESLint extension for Visual Studio Code when it validates source code after opening a project, aka 'Visual Studio Code ESLint Extention Remote Code Execution Vulnerability'.

EPSS 40.49% · 97.4th percentile

Risk Scores

CVSS 2.0
9.300000190734863
EPSS Score
40.49%
97.4th percentile

Affected Products

VendorProductVersions
microsofteslint0
MicrosoftMicrosoft Visual Studio Code ESLint extensionunspecified

Timeline

  • Jul 14, 2020 CVE Published
  • Apr 14, 2021 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Mar 30, 2023 EPSS Score
  • Apr 25, 2023 EPSS Score
  • Aug 17, 2023 EPSS Score
  • Aug 31, 2023 EPSS Score
  • Dec 2, 2023 EPSS Score
  • Aug 4, 2024 CVE Updated
  • Aug 23, 2024 EPSS Score
  • Dec 17, 2024 EPSS Score
  • Mar 17, 2025 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›