MS.Visual.Studio.Code.Remote-Containers.Remote.Code.Execution
Description
This indicates an attack attempt to exploit a Design Weakness Vulnerability in Microsoft Visual Studio Code Remote - Containers Extension.
The vulnerability is due to a design weakness in how the Docker executable's path can be configured. A remote attacker can exploit this vulnerability by enticing a user to open a maliciously crafted project folder intended for remote container development using Docker. Successful exploitation can result in the execution of arbitrary code under the security context of the target user.
Affected Products
Microsoft Visual Studio Code Remote - Containers Extension prior to 0.163.2
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2021-27083
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |