CVE-2020-17163 HIGH

CVE-2020-17163: Visual Studio Code Python Extension Remote Code Execution Vulnerability

Vendor Microsoft
Product Python extension for Visual Studio Code
Published December 29, 2023
Last update September 5, 2025
View on NVD All CVEs

CVSS base score

7.8/10
Attack vector Local
Attack complexity Low
Privileges required None
User interaction Required
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

What the vulnerability does

Description

Visual Studio Code Python Extension Remote Code Execution Vulnerability

Key dates

Disclosure timeline

December 29, 2023 CVE published
September 5, 2025 Record updated