vulnerability
FreeBSD: VID-7913fe6d-2c6e-40ba-a7d7-35696f3db2b6 (CVE-2023-29338): vscode -- Visual Studio Code Information Disclosure Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 6 | (AV:L/AC:M/Au:S/C:C/I:C/A:N) | May 10, 2023 | May 16, 2023 | Dec 10, 2025 |
Severity
6
CVSS
(AV:L/AC:M/Au:S/C:C/I:C/A:N)
Published
May 10, 2023
Added
May 16, 2023
Modified
Dec 10, 2025
Description
[email protected] reports: Visual Studio Code Information Disclosure Vulnerability A information disclosure vulnerability exists in VS Code 1.78.0 and earlier versions on Windows when file system operations are performed on malicious UNC paths. Examples include reading or resolving metadata of such paths. An authorised attacker must send the user a malicious file and convince the user to open it for the vulnerability to occur. Exploiting this vulnerability could allow the disclosure of NTLM hashes.
Solution
freebsd-upgrade-package-vscode
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.