What the vulnerability does
01Description
Visual Studio Code JS Debug Extension Elevation of Privilege Vulnerability
CVE-2025-24042
HIGH
CVE-2025-24042: Visual Studio Code JS Debug Extension Elevation of Privilege Vulnerability
CVSS base score
7.3/10
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
Key dates
02Disclosure timeline
February 11, 2025
CVE published
February 26, 2026
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2021-24698 Simple Download Monitor < 3.9.6 - Arbitrary Thumbnails Removal
CVE-2025-4067 ScriptAndTools Online-Travling-System viewpackage.php access control
CVE-2024-28965
CVE-2023-23908
CVE-2021-32753 Weak password in API gateway in EdgeX Foundry Edinburgh, Fuji, Geneva, and Hanoi releases allows remote attackers to obtain authentication token via dictionary-based password attack when OAuth2 authentication method is enabled.
