CVE Daily

CVE-2025-49714

Trust boundary violation in Visual Studio Code - Python extension allows an unau...

High CVSS 7.8

Overview

Trust boundary violation in Visual Studio Code - Python extension allows an unauthorized attacker to execute code locally.

CWE: CWE-501 Published: 2025-07-08T17:15:58.687
Risk analysis

This vulnerability is rated 🟠 HIGH.

  • CVSS: 7.8 (HIGH)
  • Detected tags: unauth_access (tag impact: HIGH)

Recommended actions:

  • Enforce authentication/authorization; reduce default endpoint exposure.

Recommended tools

Tags