VDB

GCVE-110-OSM-2026-3446

GCVE-110-OSM-2026-3446
Advisory PublishedCVSS 8.8/10
Vulnetix · Advisory published April 30, 2026
Malicious vscode tasks.json that delivers malware when the repository is opened by the user as trusted workspace in Visual Studio Code. There are two payload delivery vectors first one is tasks.json file, second one is in base64 encoded C2 URL ip-checking-notification-422[.]vercel[.]app[/]api in .env file. The first vector delivers infostealer malware and the second vector steals all environment variables accessible in process.env

Weaknesses (CWE)

CWE-506Embedded Malicious Code

Risk Scores

CVSS 3.1
8.8/10
High · CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products

VendorProductVersionsPlatforms
unknownall (affected)

References

Browse GCVE Records

73,118 records in the GCVE database · Updated July 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›